Feature request #17723
Software not code signed
Status: | Open | ||
---|---|---|---|
Priority: | Normal | ||
Assignee: | Jürgen Fischer | ||
Category: | Windows Package | ||
Pull Request or Patch supplied: | No | Resolution: | |
Easy fix?: | No | Copied to github as #: | 25619 |
Description
If a organization is running Windows Information Protection. They can whitelist the software through the publisher info. However the software is not code signed. Is it possible to do this with every .exe?
https://www.certum.eu/certum/cert,offer_en_open_source_cs.xml
PS C:\Users\DE0000046> Get-AppLockerFileInformation -path 'C:\Program Files (x86)\QGIS 2.18\bin\nircmd.exe' | fl *
Path : PROGRAMFILES\QGIS 2.18\BIN\NIRCMD.EXE
Publisher :
Hash : SHA256 0xCBAED71715073CB61619F2B4EFB471C35B8E5A89EDE896109A2698B760622F86
AppX : False
Get-AppLockerFileInformation -path 'C:\Program Files (x86)\QGIS 2.18\bin\qgis-bin.exe' | fl *
Path : PROGRAMFILES\QGIS 2.18\BIN\QGIS-BIN.EXE
Publisher :
Hash : SHA256 0x59C7BFCCF1E3AC0194CB5C6727348CA8A990530A4FF7E677B1C5F36704BDC20B
AppX : False
History
#1 Updated by Jürgen Fischer about 7 years ago
Only the installers are signed. The binaries themselves are not signed and might even be from third parties.
#2 Updated by Dani de Bode about 7 years ago
Jürgen Fischer wrote:
Only the installers are signed. The binaries themselves are not signed and might even be from third parties.
This could lead to problems if organizations are implementing Windows information protection. They need to sign the binaries themselves in order to get is working.