topbanner_forum
  *

avatar image

Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
  • Tuesday December 10, 2024, 3:41 am
  • Proudly celebrating 15+ years online.
  • Donate now to become a lifetime supporting member of the site and get a non-expiring license key for all of our programs.
  • donate

Author Topic: heads-up for big changes affecting signed installers  (Read 7289 times)

umeca74

  • Member
  • Joined in 2006
  • **
  • default avatar
  • Posts: 60
    • View Profile
    • Donate to Member
heads-up for big changes affecting signed installers
« on: December 23, 2015, 01:51 AM »
most people are not aware that there is a big shake-down of SHA1 code signing certificates coming first thing in 2016. If you sell or distribute digitally signed software you must be aware of the changes and get prepared. For more information see here

http://zabkat.com/bl...-sha1-armageddon.htm

please spread the word!
merry christmas
nikos

PS. i see there was a brief discussion about this but it affects everybody not just mouser

x16wda

  • Supporting Member
  • Joined in 2007
  • **
  • Posts: 888
  • what am I doing in this handbasket?
    • View Profile
    • Read more about this member.
    • Donate to Member
Re: heads-up for big changes affecting signed installers
« Reply #1 on: December 23, 2015, 08:39 AM »
So what would this mean for an end user? All the myriad of installers that are out there now would appear to have invalid signatures if installed??
vi vi vi - editor of the beast

Jibz

  • Developer
  • Joined in 2005
  • ***
  • Posts: 1,187
    • View Profile
    • Donate to Member
Re: heads-up for big changes affecting signed installers
« Reply #2 on: December 23, 2015, 02:08 PM »
From a cursory glance; for end users it means nothing, for developers it means they may have to buy a new certificate in order for their future signatures to look properly validated.

umeca74

  • Member
  • Joined in 2006
  • **
  • default avatar
  • Posts: 60
    • View Profile
    • Donate to Member
Re: heads-up for big changes affecting signed installers
« Reply #3 on: December 24, 2015, 12:21 AM »
the end user running windows 7 or later will see many installers that appear untrusted, so he will probably just not install your program. It is dead serious

Jibz

  • Developer
  • Joined in 2005
  • ***
  • Posts: 1,187
    • View Profile
    • Donate to Member
Re: heads-up for big changes affecting signed installers
« Reply #4 on: December 24, 2015, 01:42 AM »
Well, he does say existing files signed before that date will be tolerated, so (at least for now) it is a question of whether you need a new key for future apps.