Post a reply to the thread: Better Comodo URL for CodeSign - h t t p : / / timestamp.comodoca.com/rfc3161
Click here to log in
What's the name of our main installation product (in uppercase letters), directly followed by the current year?
You may choose an icon for your message from this list
Will turn www.example.com into [URL]http://www.example.com[/URL].
Re: Better Comodo URL for CodeSign - h t t p : / / timestamp.comodoca.com/rfc3161 BTW, and using this as "main" SHA-2 timestamp server for dual SHA-1/SHA-2 signing: http://timestamp.comodoca.com/rfc3161 and these pragmas in the script: #pragma CODESIGN_SHA = "12" #pragma CODESIGN_TSSHA1URL = "http://timestamp.comodoca.com/authenticode" creates a perfectly valid (dual) SHA-1 signature including Comodo SHA-1 timestamp and SHA-2 signature including SHA-2 timestamp. Tested on Windows 10 with the latest SignTool.exe version 10. Friedrich
Re: Better Comodo URL for CodeSign - h t t p : / / timestamp.comodoca.com/rfc3161
Re: Better Comodo URL for CodeSign - h t t p : / / timestamp.comodoca.com/rfc3161 Mark, http://timestamp.comodoca.com/rfc3161 is already a pre-defined timestamp server in SetupBuilder 10. The following pragmas are working fine when using the above timestamp. The resulting file is perfectly SHA-2 signed and COMODO SHA-256 timestamped. #pragma CODESIGN_SHA = "2" #pragma CODESIGN_TSTYPE = "1" I can post screenshots if you want. Friedrich
Better Comodo URL for CodeSign - h t t p : / / timestamp.comodoca.com/rfc3161 I found that appending /rfc3161 to the timestamp url works well for SHA2 (see thread title) Code: http://timestamp.comodoca.com/rfc3161 I figured that out before I stumbled across the following #pragmas CODESIGN_SHA CODESIGN_TSTYPE CODESIGN_TSSHA1URL https://support.comodo.com/index.php...tamping-server Talks about how Authenticode is older and I had poor luck adding ?td=sha256 to the URL I was able to have success at the command line with using switches found here https://msdn.microsoft.com/en-us/lib...or=-2147217396 but I wasn't able to get SB to use those switches, even when i tried "sql injection"... err "command switch injection" techniques inside of SB. After some confirmation, possibly this can be documented and the URL added to the default list of URLs in SB.
Better Comodo URL for CodeSign - h t t p : / / timestamp.comodoca.com/rfc3161
http://timestamp.comodoca.com/rfc3161
Forum Rules