This is causing a problem for us (and others, I expect) that are including third-party binaries in the install that have already been signed by the company that created them, when using the "Automatically sign" feature on the "Authenticode Signature" page.
Can InstallAware be modified so that it doesn't re-sign binaries that have already been signed?
Thanks,
Chris
InstallAware re-signs signed third-party binaries
-
CMarinacci
- Posts: 2
- Joined: Tue Dec 22, 2009 11:51 am
-
FrancescoT
- Site Admin
- Posts: 5361
- Joined: Sun Aug 22, 2010 4:28 am
Re: InstallAware re-signs signed third-party binaries
Dear Chris,
in your case you should disable the "Include all executables required for Windows 8 logo" option available in Authenticode settings (SHIFT+CTRL+F11 then "Authenticode Node"). In this way only the setup package will be signed at build time.
Then if needed, use the "InstallAware Code signing tool" (under the Tool folder within the InstallAware "application" start menu) to manually sign each single file that needs an Authenticode stamp.
Regards
in your case you should disable the "Include all executables required for Windows 8 logo" option available in Authenticode settings (SHIFT+CTRL+F11 then "Authenticode Node"). In this way only the setup package will be signed at build time.
Then if needed, use the "InstallAware Code signing tool" (under the Tool folder within the InstallAware "application" start menu) to manually sign each single file that needs an Authenticode stamp.
Regards
Francesco Toscano
InstallAware Software
White Papers (HowTos) - http://www.installaware.com/publication ... papers.htm
Publications - http://www.installaware.com/publications-review.htm
InstallAware Help -F1 anywhere in the InstallAware IDE
InstallAware Software
White Papers (HowTos) - http://www.installaware.com/publication ... papers.htm
Publications - http://www.installaware.com/publications-review.htm
InstallAware Help -F1 anywhere in the InstallAware IDE
-
CMarinacci
- Posts: 2
- Joined: Tue Dec 22, 2009 11:51 am
Re: InstallAware re-signs signed third-party binaries
Hi Francesco,
I realize that I could uncheck the "Include all executables required for Windows 8 logo" box and use the code signing tool to sign each individual binary that I want signed, but it seems to me that a valuable feature for InstallAware (which would be pretty easy to implement as well) is to only sign binaries that aren't already signed when this box is checked. Otherwise, it requires a lot of extra work to call the code signing tool for only those binaries that need to be signed.
Thanks,
Chris
I realize that I could uncheck the "Include all executables required for Windows 8 logo" box and use the code signing tool to sign each individual binary that I want signed, but it seems to me that a valuable feature for InstallAware (which would be pretty easy to implement as well) is to only sign binaries that aren't already signed when this box is checked. Otherwise, it requires a lot of extra work to call the code signing tool for only those binaries that need to be signed.
Thanks,
Chris
-
FrancescoT
- Site Admin
- Posts: 5361
- Joined: Sun Aug 22, 2010 4:28 am
Re: InstallAware re-signs signed third-party binaries
Dear Chris,
the tool has to be called just a single time for each single file ...anyway, I'll add your request to our feature's list.
Regards
the tool has to be called just a single time for each single file ...anyway, I'll add your request to our feature's list.
Regards
Francesco Toscano
InstallAware Software
White Papers (HowTos) - http://www.installaware.com/publication ... papers.htm
Publications - http://www.installaware.com/publications-review.htm
InstallAware Help -F1 anywhere in the InstallAware IDE
InstallAware Software
White Papers (HowTos) - http://www.installaware.com/publication ... papers.htm
Publications - http://www.installaware.com/publications-review.htm
InstallAware Help -F1 anywhere in the InstallAware IDE
Who is online
Users browsing this forum: No registered users and 169 guests
