PDA

View Full Version : comodo



NewsArchive
01-24-2014, 01:22 AM
Hi

I have code signed our distribution file. When I download and run from our
website, It indicates our company name, works fine. When I place the file
on our server and run it from a station it says : we can't verify this file
are you sure you want to run this file.

I think our company name should be displayed in both cases. Is this
correct? If so what might I have done wrong.

Thanks
Gary

NewsArchive
01-24-2014, 05:07 AM
Gary,

> I have code signed our distribution file. When I download and run from
> our website, It indicates our company name, works fine. When I place
> the file on our server and run it from a station it says : we can't
> verify this file are you sure you want to run this file.
>
> I think our company name should be displayed in both cases. Is this
> correct? If so what might I have done wrong.

Just check the certificate (right-click the file, then select "Digital
Signatures" and click "Details"). If you see "This digital signature is OK"
(see attached screenshot) then it's caused by a security setting on your
machine. But it is not related to your code-signing process.

BTW, and make sure that the Revocation lists (CRL) is up-to-date:

http://www.lindersoft.com/forums/showthread.php?p=73758#post73758

Friedrich

NewsArchive
01-24-2014, 12:18 PM
Thanks Friedrich It's amazing how much work goes into the certificates.

Gary

NewsArchive
01-24-2014, 12:19 PM
Gary,

Windows has different layers of paranoia. Screen shot attached is on a
Server 2008 R2 machine.
With the identical signed installer.
Top half is launching the installer from a UNC path.
Bottom half is after having copied the installer to the server's local hard
drive and running the identical app there.

I did an article in clarionmag some years back showing some things Jeff
Slarve had figured out about setting the local intranet zone in Internet
Explorer.
http://archive.clarionmag.com/cmag/v9/v9n01signing.html
But Windows security is a moving target.....

Jane