PDA

View Full Version : Sb 5.6



NewsArchive
08-04-2008, 01:34 AM
For my sins I'm still using SetupBuilder 5.6, because it works like a charm
and because I've not had the time to spend investigating SB6. Now I'd like
to jump up to SB6.9, however I've some questions:

Firstly, can SB6.9 run alongside SB5.6 quite happily?
Secondly, can SB5.6 scripts be opened by SB6.9 and just compiled?
Thirdly, is there a foolproof way of code signing my app within SB6? :)

Many thanks,

Colin.

NewsArchive
08-04-2008, 01:35 AM
Hi Colin,

> Firstly, can SB6.9 run alongside SB5.6 quite happily?

I have been using 5.6 and 6.x on the same computer but have finally got all
my 5.x scripts into 6 so I can drop it:)

> Secondly, can SB5.6 scripts be opened by SB6.9 and just compiled?

Yes. There are some very minor changes, like in the LOOP WIZARD in the old
script there is a line in the loop that you just remove in 6. The compiler
will tell you what line it is so you just go to that line in the script and
delete it.

> Thirdly, is there a foolproof way of code signing my app within SB6? :)

I'm doing it - isn't that enough proof?<g> Now buying and getting the
certificate is something I dread, but doing it in SB is very easy:)

Best regards,

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-04-2008, 01:36 AM
> Hi Colin,
>
>> Thirdly, is there a foolproof way of code signing my app within SB6? :)
>
> I'm doing it - isn't that enough proof?<g> Now buying and getting the
> certificate is something I dread, but doing it in SB is very easy:)

Everybody repeat after me:

"I have heard stories from others that had great difficulty in the process,
therefore, I promise to save myself "some grief" in the process by starting
at this web link for the best 3 year bargain in the industry.

AND, unlike not stopping and asking for directions, I promise to ask
questions, even the most simple minded ones!"

Product Description - Comodo Code Signing Certificate, MFG - Comodo
Internet Link - http://www.lindersoft.com/order_codesigning.htm

David

--
From David Troxell - Product Scope 7 - Encourager Software
Clarion Third Party Profile Exchange Online
http://encouragersoftware.com/profile/clarlinks.html
http://www.encouragersoftware.com/
http://www.profileexchanges.com/blog/

NewsArchive
08-04-2008, 01:37 AM
I followed the advise to order the certificate from a WinXP (with IE) and
NOT from a Vista pc. This, and Janes e-book, 'Manifest, Code signing and
Windows Vista' sold by ClarionMag helped me through without much problem.
And of cause as David says, Buy Comodo certificate from Lindersoft.
--
Kind regards / Med Venlig Hilsen
Viggo Poulsen
Vipilon ApS
www.vipilon.dk

NewsArchive
08-05-2008, 05:10 AM
Thanks Viggo, I guess it's time to go and read Jane's articles :)

Colin Wynn

NewsArchive
08-05-2008, 05:11 AM
I do actually have my Comodo Code Signing Certificate, which I purchase
through Lindersoft last year, which was simplicity in itself :)

Colin Wynn

NewsArchive
08-05-2008, 05:12 AM
Colin,

I am glad it went smoothly for you, some of us had to struggle a bit with
the process - the 3 year bargain rate definitely took some of the "sting"
out of the struggle. :-D

David

--
From David Troxell - Product Scope 7 - Encourager Software
Clarion Third Party Profile Exchange Online
http://encouragersoftware.com/profile/clarlinks.html
http://www.encouragersoftware.com/
http://www.profileexchanges.com/blog/

NewsArchive
08-05-2008, 05:13 AM
> I am glad it went smoothly for you, some of us had to struggle a bit with
> the process - the 3 year bargain rate definitely took some of the "sting"
> out of the struggle. :-D

It's not that easy to request a certificate from a WebTrust company without
the following instructions (thanks again to Hal, "bshardi", Geoff, and
Jane).

Don't order Comodo Certificate from a VISTA machine:
http://www.lindersoft.com/forums/showthread.php?t=8279

Firefox Comodo Code-signing Information:
http://www.lindersoft.com/forums/showthread.php?t=9498

Video:
http://www.datadownunder.com.au/lindersoft/ComodoPurchaseDemo.html

Purchase your digital certificate (paid Clarionmag subscription):
http://www.clarionmag.com/cmag/v8/v8n11signing2.html

--
Friedrich Linder
Lindersoft
www.lindersoft.com
+1.954.252.3910

"point. click. ship" - that's SetupBuilder
Create Windows Vista ready installations in minutes

-- Official Comodo Code Signing and SSL Certificate Partner

NewsArchive
08-05-2008, 05:14 AM
>> I am glad it went smoothly for you, some of us had to struggle a bit with
>> the process - the 3 year bargain rate definitely took some of the "sting"
>> out of the struggle. :-D
>
> It's not that easy to request a certificate from a WebTrust company without
> the following instructions (thanks again to Hal, "bshardi", Geoff, and
> Jane).

Friedrich,

Thanks MUCH for these reminder Code Signing Information locations!

David

--
From David Troxell - Product Scope 7 - Encourager Software
Clarion Third Party Profile Exchange Online
http://encouragersoftware.com/profile/clarlinks.html
http://www.encouragersoftware.com/
http://www.profileexchanges.com/blog/

NewsArchive
08-05-2008, 05:15 AM
That's exactly what I opted for David :)

Colin Wynn

NewsArchive
08-05-2008, 05:16 AM
Hi David,

> "I have heard stories from others that had great difficulty in the process,
> therefore, I promise to save myself "some grief" in the process by starting
> at this web link for the best 3 year bargain in the industry.

That's what I did and that's where the dread is<vbg> I bought Commodo
through Lindersoft and it was one of the most painful purchase experiences
I've had<g> Problem had nothing to do with Lindersoft or Setup Builder, but
had to do with dealing with the commodo website that had practially no
information about what to select and where the keyfiles would be
named/placed or anything. It took me about a week to sort it out.

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-05-2008, 05:17 AM
Arnór,

AND, that's what Friedrich placed this very informative link to a Forum
message about the process:

http://www.lindersoft.com/forums/showthread.php?t=8279

(on the http://www.lindersoft.com/order_codesigning.htm order page)

We have the "scars" - those that follow (especially with this informative
forum message), should have an easier time.

David

--
From David Troxell - Product Scope 7 - Encourager Software
Clarion Third Party Profile Exchange Online
http://encouragersoftware.com/profile/clarlinks.html
http://www.encouragersoftware.com/
http://www.profileexchanges.com/blog/

NewsArchive
08-05-2008, 05:18 AM
Hi David,

> http://www.lindersoft.com/forums/showthread.php?t=8279

If you take a good look you will see that the screenshot of the "Advanced
Private Key Options" shows the WRONG option selected, i.e. it shows "Key
Filename" and the "In the CSP" selected instead of the "In the file" and a
suggested filename. _This_ is exactly what tricked me. There was no info
anywhere and I didn't realize what this meant;)


--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-05-2008, 05:19 AM
> If you take a good look you will see that the screenshot of the "Advanced
> Private Key Options" shows the WRONG option selected, i.e. it shows "Key
> Filename" and the "In the CSP" selected instead of the "In the file" and a
> suggested filename. _This_ is exactly what tricked me. There was no info
> anywhere and I didn't realize what this meant;)

The screenshot shows the "default" Comodo settings.

Hal writes:

"DO make sure you see the radio buttons "In the CSP" and "In the file," then
tick "In the file" and enter the name you want on the certificate (such as
C:\MyCompany). Go there to collect both the .spc and .pvk file after the
transaction."

But quite a few developers prefer "In the CSP" (don't know why) and that's
why Comodo made it the default option. So the screenshot does not show the
"wrong" option - it shows the default option(s). Of course, my own key is
definitely stored in a file, and not a CSP. I would never ever do this.

--
Friedrich Linder
Lindersoft
www.lindersoft.com
+1.954.252.3910

"point. click. ship" - that's SetupBuilder
Create Windows Vista ready installations in minutes

-- Official Comodo Code Signing and SSL Certificate Partner

NewsArchive
08-05-2008, 05:19 AM
Hi Friedrich,

> The screenshot shows the "default" Comodo settings.

Yep, but IMO it would be better to see the correct setting:)

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-05-2008, 05:19 AM
Then look at the screen shots in my clarionmag article from two years ago
<g> http://www.clarionmag.com/cmag/v8/v8n11signing2.html

Jane

NewsArchive
08-05-2008, 05:20 AM
Hi Jane,

> Then look at the screen shots in my clarionmag article from two years ago
> <g> http://www.clarionmag.com/cmag/v8/v8n11signing2.html

Sure:) IMO it would be nice if comodo got off their rear end and made this
process a bit more decent for their customers. I spent about a thousand
dollars worth of my time digging through their website trying to figure out
why I didn't get my certificate which they told me I had received, which I
hadn't<bg> Unfortunately I have a renewal coming up and I ain't lookin'
forward to it;)

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-05-2008, 05:21 AM
Arnór,

GOOD catch! However, this is a case of "Follow my Instructions, NOT THAT
particular screenshot!"

http://www.lindersoft.com/forums/showthread.php?t=8279

The author DOES give the instruction - tick "In the file" - but
unfortunately spoils an otherwise very informative - how to - by not
showing a screen shot with "In the file" ticked.

"DO make sure you see the radio buttons "In the CSP" and "In the file,"
then tick "In the file" and enter the name you want on the certificate
(such as C:\MyCompany). Go there to collect both the .spc and .pvk file
after the transaction."

AND, one of the other forum threads:

http://www.lindersoft.com/forums/showthread.php?t=9498

Shows, do this process in FireFox, you won't be shown the "In the file"
option, AND this is the MANY steps to go through to get your .spc and .pvk
files.

David

--
From David Troxell - Product Scope 7 - Encourager Software
Clarion Third Party Profile Exchange Online
http://encouragersoftware.com/profile/clarlinks.html
http://www.encouragersoftware.com/
http://www.profileexchanges.com/blog/

NewsArchive
08-05-2008, 05:22 AM
Hi David,

> Shows, do this process in FireFox, you won't be shown the "In the file"
> option, AND this is the MANY steps to go through to get your .spc and .pvk
> files.

Cool. I just wish some of this had been up when I went through this<g> I
certainly applaud Friedrich to collect this and document!

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-05-2008, 05:23 AM
Thanks Arnor :)

Colin Wynn

NewsArchive
08-06-2008, 01:59 AM
I have a renewal coming up also... and since I'm going to use Friedrich's
fabulous discount that means I can't use the email address/account/etc. from
the last time. And of course, can't do the transaction using this 64-bit
Vista laptop (unless I risk it with the XP virtual machine I'm running on
VMWare).
And since it will need to be a new certificate rather than a renewal of my
existing one, need to work the timing so they don't overlap too much...

I do agree it would seem some genius could make the process just slightly
easier and more bulletproof...<g> (Just slightly...)

Jane

NewsArchive
08-06-2008, 02:00 AM
Hi Jane,

> I have a renewal coming up also... and since I'm going to use Friedrich's
> fabulous discount that means I can't use the email address/account/etc. from
> the last time. And of course, can't do the transaction using this 64-bit
> Vista laptop (unless I risk it with the XP virtual machine I'm running on
> VMWare).
> And since it will need to be a new certificate rather than a renewal of my
> existing one, need to work the timing so they don't overlap too much...

Horrors of horrors! I realized last night that my cert expires on the 9th,
so it was off to the chopping block this morning. Fortunately I managed to
remember most of this stuff so I went through the process pretty easy,
except the note on Friedrich site about using a different username/password
which I didn't know if applied to HIS site or THEIR site<g> It appears that
Comodo won't let you use your old one as it came up with an error and told
me that this username was already in use. So... Got the docs emailed to
them and have got a confirmation that they have received them and are
reviewing them.

Is there really a way to "renew" an existing certificate? I didn't see any
way to do that, just buy a new one...

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-06-2008, 02:01 AM
Hi Jane,

> me that this username was already in use. So... Got the docs emailed to
> them and have got a confirmation that they have received them and are
> reviewing them.

I knew it would be too early to celebrate<g> They require a phone bill for
verification. We don't do business by phone so the company is not
registered for a phone. I offered bank statment which is usually what is
requested, no reply yet. They are also doing domain verification so make
sure that your email matches the company and the whois is the correct one.
I use icetips.com for emails but it has a very old registrant information
(from October 1995;) that doesn't match. I told them to use
icetipscreative.com, no reply yet. The registrar wants a notorized change
certificate for $20. I asked them how much it would be to transfer the
domain<g>

Are we having fun yet???<g>

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-06-2008, 02:02 AM
> Hi Jane,
>
> On 5 Aug 2008 13:26:36 -0400, Arnor Baldvinsson wrote:
>
>> me that this username was already in use. So... Got the docs emailed to
>> them and have got a confirmation that they have received them and are
>> reviewing them.
>
> I knew it would be too early to celebrate<g> They require a phone bill for
> verification.

Arnór,

I offer condolences for what you are going through, BUT Thank You for
posting these updates, it will be helpful for other companies to know,
these are the kind of speed bumps you run into!

David

--
From David Troxell - Product Scope 7 - Encourager Software
Clarion Third Party Profile Exchange Online
http://encouragersoftware.com/profile/clarlinks.html
http://www.encouragersoftware.com/
http://www.profileexchanges.com/blog/

NewsArchive
08-06-2008, 02:03 AM
Hi David,

> I offer condolences for what you are going through, BUT Thank You for
> posting these updates, it will be helpful for other companies to know,
> these are the kind of speed bumps you run into!

<g> I decided to rather than pay the $20 to update that one field in the
whois, I'd transfer the domain to godaddy so that is in progress. Haven't
heard back from comodo and don't expect to until tomorrow.

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-06-2008, 02:04 AM
Arnór,

OK, on my first attempt, I probably did everything wrong - tried to use
FireFox in Vista 32 to order - of course, there was no "In the file,"
option, BUT I WAS able to open an account, and start the order.

Then I worked through support - they would "cancel" the original order, I
would try again, Vista 32 and IE 7, it would fail, support would "cancel"
that order, try again.

FINALLY, I loaded Windows 2000 Professional on an older computer, and
ordered using IE 6 - "In the file," finally showed up AND it was exactly
what I needed - support was VERY helpful and gracious throughout the whole
process.

Again, starting the Code Sign certificate process through Lindersoft - at
USD $200 for three years really helped ease the later pain.

Product Description - Comodo Code Signing Certificate, MFG - Comodo
Internet Link - http://www.lindersoft.com/order_codesigning.htm

BTW, you asked Jane?

"Is there really a way to "renew" an existing certificate? I didn't see
any way to do that, just buy a new one..."

Did you get an answer? Also, if there is a way to "renew", can we can
through the Lindersoft discount process so at least we get the same kind of
discount pricing OR do we open up another account with a new certificate
and try not to overlap the two by much?

David

--
From David Troxell - Product Scope 7 - Encourager Software
Clarion Third Party Profile Exchange Online
http://encouragersoftware.com/profile/clarlinks.html
http://www.encouragersoftware.com/
http://www.profileexchanges.com/blog/

NewsArchive
08-06-2008, 02:04 AM
Hi David,

> Did you get an answer? Also, if there is a way to "renew", can we can
> through the Lindersoft discount process so at least we get the same kind of
> discount pricing OR do we open up another account with a new certificate
> and try not to overlap the two by much?

Here is what bugs me about this: I _have a valid Comodo certificate. I
therefor have a valid login. They have my company info on file and have
validated it. Now they want MORE proof of authenticity for an existing
customer. _THEY_ already have approved a certificate a year ago.

I would be surprised if I get this straightened out before the darn thing
expires, but that's my fault for not starting this process a few months
ago<bg>

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-06-2008, 02:05 AM
> Here is what bugs me about this: I _have a valid Comodo certificate. I
> therefor have a valid login. They have my company info on file and have
> validated it. Now they want MORE proof of authenticity for an existing
> customer. _THEY_ already have approved a certificate a year ago.

I think that the issue is that Comodo (and all other certificate issuers)
are coming under more and more pressure to check and re-check the facts.

The last time I went through it, proof that was acceptable a year before
was no longer acceptable.

My #1 advice to anyone it BUY THE THREE YEAR CERTIFICATE EACH TIME!!!

Not just for the savings (which are substantial) but to avoid having to do
this any more often<g>


> I would be surprised if I get this straightened out before the darn thing
> expires, but that's my fault for not starting this process a few months
> ago<bg>

It is enough to drive a man to drink<g>

;-)

Charles


--
-------------------------------------------------------------------------------------------------------
Charles Edmonds
www.pagesnip.com - "Print and Save the Web, just the way you want it!"
www.clarionproseries.com - "Serious imaging tools for Clarion Developers"
www.ezround.com - "Round Corner HTML tables with matching Banners, Buttons
and Forms!"
www.lansrad.com - "Intelligent Solutions for Universal Problems"
www.fotokiss.com - "World's Best Auction Photo Editor"
-------------------------------------------------------------------------------------------------------

NewsArchive
08-06-2008, 02:06 AM
Hi Charles,

> I think that the issue is that Comodo (and all other certificate issuers)
> are coming under more and more pressure to check and re-check the facts.
>
> The last time I went through it, proof that was acceptable a year before
> was no longer acceptable.

I can somewhat understand that, but anyone who is interested in being a bad
guy can set up a legit company and get a very acceptable certificate. Just
look at all the crooks out there who have already done that!<vbg>

> My #1 advice to anyone it BUY THE THREE YEAR CERTIFICATE EACH TIME!!!

I wish they had a 10 year one<g>

> It is enough to drive a man to drink<g>

I'm too busy to drink trying to figure this s*** out<bg>

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-06-2008, 02:06 AM
>> I think that the issue is that Comodo (and all other certificate issuers)
>> are coming under more and more pressure to check and re-check the facts.
>>
>> The last time I went through it, proof that was acceptable a year before
>> was no longer acceptable.
>
> I can somewhat understand that, but anyone who is interested in being a bad
> guy can set up a legit company and get a very acceptable certificate. Just
> look at all the crooks out there who have already done that!<vbg>

Yep - I think that is why it is so much harder to get now than even a year
ago.

My guess is when the companies like Comodo got into the certificates, they
saw it as easy cash flow. Then when their insurors had to start paying off
for certificates issued that should have not been - they really tightened
the ropes on them.

So now they have most likely gone overboard in the other direction<g>.



>> My #1 advice to anyone it BUY THE THREE YEAR CERTIFICATE EACH TIME!!!
> I wish they had a 10 year one<g>

Me too!


>> It is enough to drive a man to drink<g>
> I'm too busy to drink trying to figure this s*** out<bg>

LOL - I bet.

One thing for sure, the developer who messes around and lets their
certificate expire better not hope that they need to do a new release in
the next 24 hours...

;-)

Charles



--
-------------------------------------------------------------------------------------------------------
Charles Edmonds
www.pagesnip.com - "Print and Save the Web, just the way you want it!"
www.clarionproseries.com - "Serious imaging tools for Clarion Developers"
www.ezround.com - "Round Corner HTML tables with matching Banners, Buttons
and Forms!"
www.lansrad.com - "Intelligent Solutions for Universal Problems"
www.fotokiss.com - "World's Best Auction Photo Editor"
-------------------------------------------------------------------------------------------------------

NewsArchive
08-06-2008, 02:07 AM
Hi Arnór,

> I can somewhat understand that, but anyone who is interested in being a
> bad guy can set up a legit company and get a very acceptable certificate.
> Just look at all the crooks out there who have already done that!<vbg>

The "problem" is not Comodo. The problem is that all WebTrust companies
have to follow the same (strict) rules. So when you "renew" a certificate,
you have to go through all the identity verification pain again. That's why
I always buy a 3-year certificate. IMO, Comodo is the most
service-orientated WebTrust company in the market. But they have to follow
"the rules".

You can't "renew" a certificate because it's not possible to extend the
validity of a code-signing certificate. If your current certificate is due
to expire, you have to buy a new one. To be on the safe side, I would
suggest to do it ten days before the expiration date.

BTW, a few months ago, I had to request a VeriSign code-signing certificate
to participate in the Microsoft logo program. Side note and official
statement: I'll never do this again - I will never ever do business with
VeriSign. Believe me, I still wake up at nights in a cold sweat. It was a
nightmare. After five or six days of ******** discussions, VeriSign decided
that they can't give us a code-signing certificate.

Two weeks later, the very same VeriSign company contacted us and asked
whether we were interested in reselling VeriSign certificates. What the
hell... Unfortunately, I can't post my answer e-mail here because it
included a list of words my daughter is not allowed to say.

This is a very strange world...

Friedrich

--
Friedrich Linder
Lindersoft
www.lindersoft.com
+1.954.252.3910

"point. click. ship" - that's SetupBuilder
Create Windows Vista ready installations in minutes

-- Official Comodo Code Signing and SSL Certificate Partner

NewsArchive
08-06-2008, 02:14 AM
> BTW, a few months ago, I had to request a VeriSign code-signing certificate
> to participate in the Microsoft logo program. Side note and official
> statement: I'll never do this again - I will never ever do business with
> VeriSign. Believe me, I still wake up at nights in a cold sweat. It was a
> nightmare. After five or six days of ******** discussions, VeriSign decided
> that they can't give us a code-signing certificate.
>
> Two weeks later, the very same VeriSign company contacted us and asked
> whether we were interested in reselling VeriSign certificates. What the
> hell... Unfortunately, I can't post my answer e-mail here because it
> included a list of words my daughter is not allowed to say.

ROFL!

I still remember the "tone" of your E-mails about the subject<g>

;-)

Charles




--
-------------------------------------------------------------------------------------------------------
Charles Edmonds
www.pagesnip.com - "Print and Save the Web, just the way you want it!"
www.clarionproseries.com - "Serious imaging tools for Clarion Developers"
www.ezround.com - "Round Corner HTML tables with matching Banners, Buttons
and Forms!"
www.lansrad.com - "Intelligent Solutions for Universal Problems"
www.fotokiss.com - "World's Best Auction Photo Editor"
-------------------------------------------------------------------------------------------------------

NewsArchive
08-06-2008, 02:15 AM
> ROFL!
>
> I still remember the "tone" of your E-mails about the subject<g>
>
> ;-)

<VBG> ;-)

Friedrich

NewsArchive
08-06-2008, 03:40 AM
> Hi David,
>
>> Did you get an answer? Also, if there is a way to "renew", can we can
>> through the Lindersoft discount process so at least we get the same kind of
>> discount pricing OR do we open up another account with a new certificate
>> and try not to overlap the two by much?
>
> Here is what bugs me about this: I _have a valid Comodo certificate. I
> therefor have a valid login. They have my company info on file and have
> validated it. Now they want MORE proof of authenticity for an existing
> customer. _THEY_ already have approved a certificate a year ago.

Arnór,

Well, I see further in the thread, Friedrich answered our concerns -

"You can't "renew" a certificate because it's not possible to extend the
validity of a code-signing certificate. If your current certificate is due
to expire, you have to buy a new one. To be on the safe side, I would
suggest to do it ten days before the expiration date."

AND

"The problem is that all WebTrust companies have to follow the same
(strict) rules. So when you "renew" a certificate, you have to go through
all the identity verification pain again. That's why I always buy a 3-year
certificate."

David

--
From David Troxell - Product Scope 7 - Encourager Software
Clarion Third Party Profile Exchange Online
http://encouragersoftware.com/profile/clarlinks.html
http://www.encouragersoftware.com/
http://www.profileexchanges.com/blog/

NewsArchive
08-07-2008, 01:45 AM
Hi Friedrich,

> The "problem" is not Comodo. The problem is that all WebTrust companies
> have to follow the same (strict) rules. So when you "renew" a certificate,

I know, I just think it's rediculous because in the end it doesn't really do
anything to protect anyone from anything<g>

> VeriSign. Believe me, I still wake up at nights in a cold sweat. It was a
> nightmare. After five or six days of ******** discussions, VeriSign decided
> that they can't give us a code-signing certificate.

I've heard people talk about that experience when trying to get MS certified
- your pain is shared by a lot of developers<g>

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-07-2008, 01:46 AM
Hi Arnór,

> I know, I just think it's rediculous because in the end it doesn't really
> do anything to protect anyone from anything<g>

I agree :)

> I've heard people talk about that experience when trying to get MS
> certified - your pain is shared by a lot of developers<g>

<G>

Friedrich

NewsArchive
08-07-2008, 01:46 AM
>> I know, I just think it's rediculous because in the end it doesn't really
>> do anything to protect anyone from anything<g>

I disagree.
What it does is to remove anonymity from code.
If a piece of malware, for example, is found and is signed, it would be
difficult to repudiate authorship.
If a piece of signed legitimate software is modified by some other process,
the signature verification will fail thereafter.

Jane

NewsArchive
08-07-2008, 01:47 AM
>>> I know, I just think it's rediculous because in the end it doesn't
>>> really
>>> do anything to protect anyone from anything<g>
>
> I disagree.
> What it does is to remove anonymity from code.
> If a piece of malware, for example, is found and is signed, it would be
> difficult to repudiate authorship.
> If a piece of signed legitimate software is modified by some other
> process, the signature verification will fail thereafter.

I meant the "renewal" process. If they (Comodo) have already checked the
identity then it does not make much sense to go through all this again.

In the past, this was the case.
https://support.comodo.com/index.php?_m=knowledgebase&_a=viewarticle&kbarticleid=50

But I think the rules changed (last year?).

Friedrich

NewsArchive
08-07-2008, 01:47 AM
Ah, agreed.
But then, here in lovely California I have to go through a 10-day "cooling
off" waiting period each time to purchase a gun. The fact that I have other
guns in my safe with which I could create mayhem were that my intention is
irrelevant to our "protectors"....

Perhaps Comodo thinks that since last time you may have sold your business
to your cousin Igor from Hackistan...<g>

Jane

NewsArchive
08-07-2008, 01:47 AM
Hi Jane,

> Ah, agreed.
> But then, here in lovely California I have to go through a 10-day "cooling
> off" waiting period each time to purchase a gun. The fact that I have
> other guns in my safe with which I could create mayhem were that my
> intention is irrelevant to our "protectors"....
>
> Perhaps Comodo thinks that since last time you may have sold your business
> to your cousin Igor from Hackistan...<g>

<G>

Friedrich

NewsArchive
08-07-2008, 01:50 AM
Hi Jane,

> What it does is to remove anonymity from code.

Agreed, but setting up corporation as a front is not going to deter someone
who is determined to get some bad stuff out.

> If a piece of signed legitimate software is modified by some other process,
> the signature verification will fail thereafter.

Ah, THAT I didn't know. Even verified it<g> It does indeed fail.

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-07-2008, 01:51 AM
> Ah, THAT I didn't know. Even verified it<g> It does indeed fail.

That's why if you use Armadillo, for example, you need to apply Armadillo
BEFORE signing, otherwise Windows will see the program as modified
(corrupt).
The signing process makes a hash of the file, and that hash is recalculated
when you run the program. If they don't match, the program isn't intact as
signed.

Jane

NewsArchive
08-07-2008, 01:54 AM
Hi,

> I knew it would be too early to celebrate<g> They require a phone bill for
> verification. We don't do business by phone so the company is not
> registered for a phone. I offered bank statment which is usually what is

They seem to be hellbent on phonebills which we don't have:(

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-07-2008, 01:54 AM
> They seem to be hellbent on phonebills which we don't have:(

Two words:

"Laser Printer"

;-)

Charles


--
-------------------------------------------------------------------------------------------------------
Charles Edmonds
www.pagesnip.com - "Print and Save the Web, just the way you want it!"
www.clarionproseries.com - "Serious imaging tools for Clarion Developers"
www.ezround.com - "Round Corner HTML tables with matching Banners, Buttons
and Forms!"
www.lansrad.com - "Intelligent Solutions for Universal Problems"
www.fotokiss.com - "World's Best Auction Photo Editor"
-------------------------------------------------------------------------------------------------------

NewsArchive
08-07-2008, 01:55 AM
Hi Charles,

> Two words:
>
> "Laser Printer"

<g>

One of the problems is that it seems they only get one email out pr. day pr.
customer and there is always a new person involved. So, no replies to my
email yesterday or this morning:(

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-07-2008, 01:55 AM
Hi Arnor

I feel your pain. My company does not have a phone account either so when the time
comes, it looks like I will need to:-

1: Scan present Phone account
2: screen capture to JPG
3: edit account name
4: email edited copy to Commode !

Yep, Charles has a similar solution <G>

JohnG

NewsArchive
08-07-2008, 01:56 AM
Hi John,

> 1: Scan present Phone account
> 2: screen capture to JPG
> 3: edit account name
> 4: email edited copy to Commode !

Sorry, that will not work. They need PHONE validation. I.e. they CALL the
number. Which is fine, but it has to be registered and match the phone bill
that you send them. And now they have found a multi-year old listing on the
stupid D&B website that is for our old DBA. We incorporated in 2006 and
they do not have that data in there. And Comodo insists that they must
validate with phone AND against D&B, i.e. the phone number on the bill must
match the phone number in the D&B listing. So now I have to get a phone in
the company name so they can call it AND I need to make some calls to it so
I can do an online invoice for it and send it to them so they can see that
it's in the name of the company. AND I need to email D&B and get them to
change their listing, which will probably take a year since they have not
YET got the 2006 data for our corporation! Not to mention that they insist
on using the icetips.com domain for verification, not our
icetipscreative.com domain. The problem with the old one is that it still
has old registrant information since it was first registered in 1995.

At this point I'm close to just tell them to just screw it. This is a
nightmare on 3 wheels if there ever was one<bg>

--
Arnór Baldvinsson - Icetips Creative, Inc.
www.icetips.com - www.buildautomator.com

Subscribe to information from Icetips.com:
http://www.icetips.com/subscribe.php

NewsArchive
08-07-2008, 01:57 AM
Hi Arnor

Fark! Wot a nightmare.

There must be some other way to work thru all this. But what that is I do not know.

Watching with interest.

JohnG


>Sorry, that will not work.

NewsArchive
08-07-2008, 01:58 AM
> At this point I'm close to just tell them to just screw it. This is a
> nightmare on 3 wheels if there ever was one<bg>

Been there - done that<g>

Try MOVING<g>

Be sure you get that 3 year BEFORE you guys decide to uproot.

;-)

Charles


--
-------------------------------------------------------------------------------------------------------
Charles Edmonds
www.pagesnip.com - "Print and Save the Web, just the way you want it!"
www.clarionproseries.com - "Serious imaging tools for Clarion Developers"
www.ezround.com - "Round Corner HTML tables with matching Banners, Buttons
and Forms!"
www.lansrad.com - "Intelligent Solutions for Universal Problems"
www.fotokiss.com - "World's Best Auction Photo Editor"
-------------------------------------------------------------------------------------------------------

NewsArchive
08-07-2008, 01:59 AM
Arnór,

> At this point I'm close to just tell them to just screw it. This is a
> nightmare on 3 wheels if there ever was one<bg>

Been there - done that <g>

At that point I told "VeriSign" that we have quite a few thousand customers
and that I would make the ridiculous story public. That we are a
widely-recognized global provider of installation authoring and software
configuration management solutions. That we are already one of the Top 5
installation tool vendors worldwide. That impressed them very much. They
told me "Good luck for the future and have a good day" <g>.

Problem is that certificates are a gold mine (thanks to Vista). 500
certificates per hour is *nothing*.

My advise is: always be polite! Try not to take it personally. Ask: "Do
you see a way to solve my problem?" And if you really want the certificate,
don't give up <g>.

Friedrich