Feature request #17723

Software not code signed

Added by Dani de Bode over 2 years ago. Updated over 2 years ago.

Status:Open
Priority:Normal
Assignee:Jürgen Fischer
Category:Windows Package
Pull Request or Patch supplied:No Resolution:
Easy fix?:No Copied to github as #:25619

Description

If a organization is running Windows Information Protection. They can whitelist the software through the publisher info. However the software is not code signed. Is it possible to do this with every .exe?

https://www.certum.eu/certum/cert,offer_en_open_source_cs.xml

PS C:\Users\DE0000046> Get-AppLockerFileInformation -path 'C:\Program Files (x86)\QGIS 2.18\bin\nircmd.exe' | fl *

Path : PROGRAMFILES\QGIS 2.18\BIN\NIRCMD.EXE
Publisher :
Hash : SHA256 0xCBAED71715073CB61619F2B4EFB471C35B8E5A89EDE896109A2698B760622F86
AppX : False

Get-AppLockerFileInformation -path 'C:\Program Files (x86)\QGIS 2.18\bin\qgis-bin.exe' | fl *

Path : PROGRAMFILES\QGIS 2.18\BIN\QGIS-BIN.EXE
Publisher :
Hash : SHA256 0x59C7BFCCF1E3AC0194CB5C6727348CA8A990530A4FF7E677B1C5F36704BDC20B
AppX : False

History

#1 Updated by Jürgen Fischer over 2 years ago

Only the installers are signed. The binaries themselves are not signed and might even be from third parties.

#2 Updated by Dani de Bode over 2 years ago

Jürgen Fischer wrote:

Only the installers are signed. The binaries themselves are not signed and might even be from third parties.

This could lead to problems if organizations are implementing Windows information protection. They need to sign the binaries themselves in order to get is working.

Also available in: Atom PDF