Reply to Thread

Post a reply to the thread: code signing

Your Message

Click here to log in

What's the name of our main installation product (in uppercase letters), directly followed by the current year?

 

You may choose an icon for your message from this list

Additional Options

  • Will turn www.example.com into [URL]http://www.example.com[/URL].

Topic Review (Newest First)

  • 10-09-2013, 06:30 AM
    linder

    Re: code signing

    You are welcome

    Friedrich
  • 10-09-2013, 06:16 AM
    notlogan

    Re: code signing

    Got it....thanks!
  • 10-09-2013, 06:04 AM
    linder

    Re: code signing

    Yes, that is correct. When you have General Information -> Digital Signature -> Add a Digital Signature -> set to YES then the compiler will automatically code-sign your generated setup.exe. Compiler report should look similar to the attached screenshot.

    Friedrich
  • 10-09-2013, 05:50 AM
    notlogan

    Re: code signing

    In the script it looks like I'm signing my application .exe but I don't see where setup.exe is being code signed.

    #code-sign application "C:\Installation Programs\Release\DataBinder.exe"


    I went to General Information and added digital signature to installer executable.
  • 10-08-2013, 09:20 AM
    linder

    Re: code signing

    Microsoft recommends that commercial software publishers code sign all their PE files. And if you would like to see your own application files flagged as 'suspicious' by anti-virus and anti-spyware systems on a regular basis, then don't code-sign ;-)

    You should always code-sign your own PE application files (all your .exe, .dll, .ocx, ...). You should not code-sign 3rd-party files because code-signing means that you take over responsibility (and sometimes it is not even allowed to code-sign because the signature modifies the binary contants of a file). If you have "unsigned" 3rd-party components, you should ask the vendor to code-sign the files.

    Friedrich
  • 10-08-2013, 09:03 AM
    notlogan

    Re: code signing

    I meant the setup.exe. Is there any reason I'd want to also the digital signature to my application.exe file?
  • 10-08-2013, 02:06 AM
    linder

    Re: code signing

    With "my app", do you mean the "setup.exe" or your application file(s)?

    General Information -> Digital Signature -> Add a Digital Signature -> YES will always code-sign your install. The #code-sign application directive lets you add an Authenticode® digital signature to your own application file(s). For example, your own .exe, .dll, .ocx, etc.

    Friedrich
  • 10-07-2013, 11:28 AM
    notlogan

    Re: code signing

    Got it...thanks.....it worked fine once I got all the pieces in place.

    I assume every time I compile an updated version of my setup, my app will be "code-signed" during compilation
  • 10-07-2013, 10:34 AM
    linder

    Re: code signing

    The .PFX is all that you need! SetupBuilder can use both .PVK/.SPC and .PFX.

    1. You need SIGNTOOL.EXE from Microsoft.

    2. Open the IDE and select "Tools" -> "Options..." -> File Locations tab. In the "Signcode.exe or SignTool.exe Location" field, please specify the fully qualified path to SIGNTOOL.EXE file.

    Now open your project and go to "General Information" -> "Digital Signature" -> and select your certificate file (.pfx) in the "PFX File (optional)" field. Enter all required information (including timestamp).

    Compile and you are done

    Friedrich
  • 10-07-2013, 08:00 AM
    notlogan

    Re: code signing

    I used firefox to download....I guess that was a mistake. I followed the instructions on copying it but I ended up with a .pfx file and no .spc file. What do I do know.
This thread has more than 10 replies. Click here to review the whole thread.

Posting Permissions

  • You may post new threads
  • You may post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules