Use the links below to download binary or source distributions of Excalibur from one of our mirrors. It's a good idea to verify the integrity of the downloaded files using signatures downloaded from our main distribution directory (see below).
Excalibur is distributed as
archives - the contents are the same. Please note that the
archives contain file names longer than 100 characters and have been
created using GNU tar extensions. They must be untarred with a GNU
compatible version of
You are currently using the http://mirrors.ibiblio.org/apache/. If you encounter a problem with this mirror, please select another mirror. If all mirrors are failing, there are backup mirrors (at the end of the mirrors list) that should be available.
All Excalibur products are distributed under the terms of The Apache Software License (version 2.0, and version 1.1 for some older releases). See our License page, or the LICENSE.txt file included in each distribution.
It is essential that you verify the integrity of the downloaded files using the PGP or MD5 signatures.
The MD5 checksums can be verified using the
md5 utility (called
md5sum on some systems). Download the
md5 file that
corresponds to the distributions you want to check. Make sure you get these
checksums from the
directory, rather than from a mirror.
The PGP signatures can be verified using PGP or GPG. First
download the KEYS
as well as the
asc signature file for the particular
distribution. Make sure you get these files from the
directory, rather than from a mirror. Then verify the signatures
% pgpk -a KEYS % pgpv name-of-distributed-file.tar.gz.asc
% pgp -ka KEYS % pgp name-of-distributed-file.tar.gz.asc
% gpg --import KEYS
% gpg --verify name-of-distributed-file.tar.gz.asc