Anybody do code signing?

tchart

Well-Known Member
Licensed User
Longtime User
Does anybody else use code signing? In the past Ive never bothered.

A customer asked me to code sign my installer executable. This isnt free but I have gone through validation and paid (~USD$80) for the code signing certificate.

So now my installer is signed and doesnt give warnings when running on Windows.

I also looked at signing my projects JAR file (which I can do) but as far as I can see the JAR file doesnt show the digital signature in Windows explorer and the user must manually run the jarsigner tool to verify the JAR - so it seems a bit pointless to sign the JAR file - or am I missing something?
 

EnriqueGonzalez

Well-Known Member
Licensed User
Longtime User
Does anybody else use code signing?
did it once to distribute a software.

This isnt free but I have gone through validation and paid (~USD$80) for the code signing certificate.
yes they are kind of expensive

but as far as I can see the JAR file doesnt show the digital signature in Windows explorer a
this is not exactly for the user, what it helps you do is to prevent false positives with the antivirus companies

so it seems a bit pointless to sign the JAR file
it is, Code signing, in my opinion, is for older software that compiled once and worked forever, in the current era, you sign v1.0 and you already have 3 versions behind.
 
Top