Slightly OT: Windows Code Signing
paul at researchware.com
Mon Oct 26 15:32:38 EDT 2020
Thank you Matthias,
I did notice the unexpectedly large price on Sectigo direct and purchase
a 3 year through comodosslstore.com for about $212.50 USD, so at an okay
price for me. Mine is just a plain signing cert, not the EV.
What I ran into that was very frustrating was the browser requirements.
You would think - especially with the vagueness of browsers supporting
certain features - that they would make an app to do their own CSR
generation at the start of the process and the same app can do the
download at the end
I do not have any older version of IE (on VMs or otherwise). I did
download Firefox 68 (current release is 82!, but 68 is only from early
2019) but could not get it to work. Finally I was able to download my
cert via Safari under Mojave and move it to my Windows 10 via Dropbox
and under Windows 10 use the MMC (Microsoft Management Console) to
import it and export it in p12 (.pfk) format for use in signing
Standalones. Success, but what a pain to go through.
If anyone has found a Issuer that will just let you download the code
signing cert as a .p12 pr .pfk file, I'd like to know.
On 10/26/2020 2:25 PM, matthias rebbe via use-livecode wrote:
> Hi Paul,
> first of all buying directly through Sectigo is expensive. If you purchase from one of Sectigo's partners you'll get it much cheaper.
> I've purchased in July a 3year code signing certificate ( not the ELV) for 207 Euro for all 3 years. The certifcate was also delivered by Sectigo. And i was able to download the certificate on my Windows 10 VM with Internet Explorer, if i remember right. I even cannot remember that a special version of Mozilla was required.
> They only mentioned, that you cannot fetch your certificate with MS Edge, Chrome and Safari.
> I've did the complete purchase process on my Windows 10 VM.
> Matthias Rebbe
> Life Is Too Short For Boring Code
>> Am 26.10.2020 um 18:32 schrieb Paul Dupuis via use-livecode <use-livecode at lists.runrev.com>:
>> My Windows Code signing cert for signing LiveCode standalones has expired.
>> I purchased it from instantsll.com (3 year) which has become sectigo.com and it appears that they never moved over old accounts since my prior username, email, and password do not work nor does the email work for password recovery.
>> So I bought a new one from comodosslstore.com (which turns out is also sectigo.com). Verification was quick and automate - no problem.
>> Now my cert is ready, but the download/install instructions requires Internet Explorer 11 or Firefox 68 or older (Firefox is at version 82 and Microsoft Edge is what comes with Windows 10 not Internet Explorer 11
>> Their support documentation is conflicting and terrible (IMHO).
>> It is not too late to cancel the order and buy elsewhere. Does anyone have a recommendation for a supplier of Windows Code Signing certs that have a simple and straight forward process for buying AND getting the .p12 file you ultimately need for code signing?
>> This is kind of urgent since we are unable to sign until we get a new cert.
>> use-livecode mailing list
>> use-livecode at lists.runrev.com
>> Please visit this url to subscribe, unsubscribe and manage your subscription preferences:
> use-livecode mailing list
> use-livecode at lists.runrev.com
> Please visit this url to subscribe, unsubscribe and manage your subscription preferences:
More information about the use-livecode