|
I don't know if that last comment was tongue-in-cheek or not, but anyway....
Well once upon a time you needed to get exe's from floppy disks (and then later CD's) from a physical software shop. Whilst yes it was possible that the exe on a floppy disk was modified by a intermediate person, you could be pretty sure that it was a genuine program (unless you lived on "sneaker-net" software)
When the internet came around you had to rely on the fact that something calling itself "Microsoft Software" really did come from Microsoft. Whilst yes, I can get a certificate and release Trojans, it's one more step I would need to do to look "trustworthy". And I'd probably have a great deal of difficulty getting a (non-self-signed) certificate calling myself "Microsoft Software"
|
|
|
|
|
harvyk0 wrote: And I'd probably have a great deal of difficulty getting a (non-self-signed) certificate calling myself "Microsoft Software" Absolutely you would, otherwise the concept of code signing would be worthless. Getting that certificate requires that the CA verify you are who you say you are.
harvyk0 wrote: Whilst yes, I can get a certificate and release Trojans, it's one more step I would need to do to look "trustworthy". Not just one more step, they make it hard for you to avoid giving your real identity to them before getting the signing certificate. If you intentionally sign bad stuff, they know where you live. Also, they can revoke your signing authority, so everything you've ever signed with that certificate is no longer valid -- users who try to install it get a certificate-revoked error -- and you can't sign anything new with it either. It takes time for revocations to filter through the system, and they are very few and far between, but they do happen.
5G -- more lies faster.
|
|
|
|
|
We use them for our software. At most you'll get a warning that the certificate has expired. Windows will not stop software running with invalid or expired certificates (at least this was the case a couple of years ago when I tested that by modifying the exe using a hex editor after signing).
To some of the others questioning code signing certificates:
They are very useful for Whitelisting applications such as AppLocker, as it allows you to trust an entire suite of applications / updated versions of software by the same vendor without needing to simply trust things based on path / file names (technically insecure unless you've got strong permissions) or hash based (where typically every file needs to be hashed and certainly every version update).
Also the comment for getting java (or variants like that) to simply run remotely without signing (or unsigned alerts), an appropriately hardened machine will prevent that from happening (talking corp environment here).
|
|
|
|
|
The old signed exe will be alright, and will work if its compatible on the machine/OS.
But you will not be able to properly sign new exes with the old certificate.
|
|
|
|
|
My system was dual boot Win10/Ubuntu.
Today I decided to expand my Ubuntu partition and delete win10 and only run win10 from VirtualBox.
1) I got Win10 installed and registered from VBox. Can't believe it worked perfectly.
2) I had to delete the old win10 partition and then resize the Linux partition to take over the entire drive.
There were tenuous moments as gparted expanded / copied the partition.
I rebooted and it worked.
Can't believe it when tech works!!
|
|
|
|
|
I know the feeling - I've used AOMEI Partition Assistant (the free version) to change the size of my boot partition, and ... it just worked, even with windows 10 running.
I had a good backup, but ... I had my fingers crossed when I pushed the "go for it" button.
Impressive stuff, technology!
"I have no idea what I did, but I'm taking full credit for it." - ThisOldTony
"Common sense is so rare these days, it should be classified as a super power" - Random T-shirt
AntiTwitter: @DalekDave is now a follower!
|
|
|
|
|
OriginalGriff wrote: I had a good backup, but ... I had my fingers crossed when I pushed the "go for it" button.
That's exactly how I felt when I rebooted the first time.
I had read the warnings that "sometimes grub won't find the partition and I was scared.
Glad you had success too! it's a great feeling.
|
|
|
|
|
I think I'm 3 for 4, several just worked ( gparted ) one damaged the ( NTFS ) partition. ( NOT as badly as checkdisk has done on several times. ) That was on a "backup" machine, so no huhu.
|
|
|
|
|
You are a real influencer!
(and a daredevil)
|
|
|
|
|
RickZeeland wrote: You are a real influencer!
(and a daredevil)
Thanks, I really was hoping to encourage others toward success, because when I finally decided to go for it and I pulled the trigger I thought, "I'll probably be working on getting my system to boot all day long, but I guess that's what computers are all about".
It's very encouraging to have something actually work.
|
|
|
|
|
If you want a real adrenaline rush, move and shrink your root partition with Gparted.
I've done it a couple of times and survived.
Cheers,
Peter
Software rusts. Simon Stephenson, ca 1994. So does this signature. me, 2012
|
|
|
|
|
Peter_in_2780 wrote: move and shrink your root partition with Gparted.
Yeah, sounds too scary for me.
Glad to hear it worked out for you.
|
|
|
|
|
Another black box that has served me was Boot Repair. Fixed a boloxed up Grub (self inflicted).
As Pogo said: "we have met the enemy and it is us"
If you can keep your head while those about you are losing theirs, perhaps you don't understand the situation.
|
|
|
|
|
theoldfool wrote: Boot Repair.
I will keep that in mind for the future.
I had a problem with grub on another dual boot-- trying to remove the dual boot options and somehow I finally worked thru it but it was touch and go for awhile where the laptop did nothing but show the initial boot menu.
theoldfool wrote: As Pogo said: "we have met the enemy and it is us"
So true! Most all the problems I have are self-inflicted by trying to do something else.
|
|
|
|
|
raddevus wrote: 1) I got Win10 installed and registered from VBox. Can't believe it worked perfectly.
By now I'm much more confident seeing Windows 10 working in a virtualized environment than on real hardware. I've seen a few botched upgrades firsthand, and it was always with real hardware - never a VM. I'm absolutely convinced Microsoft tests a lot more instance of Windows 10 as VMs than on real hardware.
raddevus wrote: Can't believe it when tech works!!
When a tool's sole job is to do exactly the one thing you're trying to accomplish...you have to have more faith than that. Otherwise why would anyone ever take a chance?
|
|
|
|
|
dandy72 wrote: By now I'm much more confident seeing Windows 10 working in a virtualized environment than on real hardware.
I am thinking the same thing. I was thinking, "Hmm...Win10 is a really nice system when it is running virtualized on a proper OS."
It's so much more manageable now and you can begin to examine what goes wrong when it attempts to eat resources (ram). It's also nice to be able to assign it the amount of ram you want it to have, etc.
|
|
|
|
|
The movie kept me literally glued to my seat.
We actually mean the movie kept me figuratively glued to my seat — but who needs figuratively, anyway?
|
|
|
|
|
|
Yeah, tons of people misuse the word "literally."
Pretty soon it will take on the opposite meaning, like for instance, "artificial" did.
The difficult we do right away...
...the impossible takes slightly longer.
|
|
|
|
|
Richard Andrew x64 wrote: tons of people
So true! I've witnessed at least 27 people use the word incorrectly...(average weight of 150 lbs. or so)
"Go forth into the source" - Neal Morse
"Hope is contagious"
|
|
|
|
|
I see what you did there!
The difficult we do right away...
...the impossible takes slightly longer.
|
|
|
|
|
Would have been terrible to be riveted.
I'm not sure how many cookies it makes to be happy, but so far it's not 27.
JaxCoder.com
|
|
|
|
|
Not at all, it would have been a riveting experience
|
|
|
|
|
One of my pet peeves, and I constantly hear that sort of thing coming from news reporters. Y'know, the very people who perhaps should best know how to use words given that their everyday work tools are language. I watch the news coming from Quebec (living on the Ontario/Quebec border), and while Quebecers proclaim themselves to be protectors of the French language, hearing them constantly misuse it makes me wonder whether they deserve that title--as a French Canadian, I'm embarrassed. This is not the same as regional dialects and expressions; those, I'm absolutely okay with.
A few months ago when Boeing's 737 Max were being investigated, I've heard said reporters, on many occasions--including their most celebrated news anchors with decades of experience--say that the planes were "littéralement cloués au sol" (literally translated - and this is a proper use of it - "literally nailed to the ground"). You mean someone took a hammer and nails, and nailed the tires onto the tarmac or inside a hangar? Too bad they didn't any footage of that.
Another favorite memorable example, also from a while back: A deputy got pissed off for one reason or another. The news reporter said she had "littéralement explosé au parlement" (she "literally exploded in parliament"). Really...so there was blood and guts and everything? How many people were taken out being within the lethal radius of that explosion? I've heard of spontaneous human combustion, but not that someone could make oneself explode.
I could go on.
|
|
|
|
|
Well,
Here is another old project I wrote about a decade ago. It's a bittorrent client that I always thought was commercial quality software. After writing this one I was offered a position at Bittorrent Inc.[^] over in San Francisco but I declined the offer. I ended up accepting a position at Microsoft a few months later.
I've got dozens of projects like this that I have never shown anyone. I've recently been considering uploading all of them onto Github and allowing other developers to take them over.
ScatterTorrent[^]
Best Wishes,
-David Delaune
|
|
|
|