i hate codesigning
-
i'm back with another edition of "i hate..." threads, this time it's about my codesigning experience
Apple: my bank apparently rejected the payment and I received no info from them, or apple so I've been waiting for weeks for my approval only for it to have already been cancelled and refunded, also getting in touch with apple support was a redirecting nightmare
Windows: okay this is the juicy one, i believe my experience is somewhat similar to christophs...
- sign up for a certificate with Sectigo
- sign up as a business (this was my fault but my god how hard is it to change a few details)
- they ask for all kinds of evidence that im a real person, ID etc, none of which they approve (even though I used those exact files for a crypto exchange a few days earlier...)
- they don't email me any specifics, just a vague "click here" link, that 404s
- i email them back multiple times, telling them that their support link didn't work
- radio silence
- okay time for a refund... nope.. none of the Contact forms, live chat buttons, email support links work (they just don't do anything when clicked).
- for a little extra grossness, they also made me use Internet Explorer (not microsoft edge) to apply for the certificate
- 80% sure they're going to share my details with scam callers and the like for the next 10 years...
I can't believe these companies are the authority when it comes to what Windows blocks and doesn't block...
beware sectigo
Does anyone have any suggestions for Windows codesigning certificates that AREN'T an absolute nightmare? Comodo?
thank you for listening to my ted talk
-
@iamlamprey said in i hate codesigning:
Does anyone have any suggestions for Windows codesigning certificates that AREN'T an absolute nightmare? Comodo?
For Mac, Yes of course you must sign your code.
But do you think you must execute codesign for Windows? I see a lot of Big brands even doesn't do that.
I think in Windows, only AAX codesign will be enough and you can do it with a self signed certificate that is created from your Mac computer for free
And of course no more butt pains like IE, we live in 2021 -
@iamlamprey said in i hate codesigning:
Comodo?
I'm using comodo here. You have to use an old Internet Explorer to download the certificate as well... also, the certificate is issued by Sectigo so it seems to be the same thing.
-
@iamlamprey We gave up on codesigning for Windows a long time ago (I think Christoph did as well). We've still never gotten any customer complaints about it. I think Windows users are just accustomed to the warning message that appears because the vast majority of applications are not codesigned. If it's too much of a headache, I'd recommend skipping it :)
-
Thanks everyone :) the main reason I wanted a certificate was for a more legit-looking installer for distribution via affiliate stores but I'll talk to the owners and see if it's that big of a deal... can always opt for comodo and (hopefully) not squirm as much
-
Yup, going strong here without any certificate on Windows.
-
@iamlamprey In Windows, while running the plugin installer, the only difference is this:
I've never heard any complaints for that. Because every Windows user knows how to install software.
develop Branch / XCode 13.1
macOS Monterey / M1 Max -
@orange said in i hate codesigning:
the only difference is thi
That's only if you don't purchase Extended Validation Code Signing for an additional $800/ year.
:pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo:#internetmafia #organizedcrime
Dan Korneff - Producer / Mixer / Audio Nerd
-
@orange said in i hate codesigning:
the only difference is this:
What about the smart screen filter in Edge?
Libre Wave - Freedom respecting instruments and effects
My Patreon - HISE tutorials
YouTube Channel - Public HISE tutorials -
@dustbro said in i hate codesigning:
That's only if you don't purchase Extended Validation Code Signing for an additional $800/ year.
:pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo: :pile_of_poo:#internetmafia #organizedcrime
Yeah, unfortunately. Instead using this painful and costly way, for AAX plugin signing: self signed certificate works well here. I really recommend it. Create one certificate in macOS with Keychain Access, then transfer it to Windows. And use it with Eden Tools for code signing. Completely free and extremeley easy.
-
@d-healey said in i hate codesigning:
@orange said in i hate codesigning:
the only difference is this:
What about the smart screen filter in Edge?
I haven't seen any complaints for this. I am not sure that this filter gives warning with zipped files.
-
@dustbro said in i hate codesigning:
for an additional $800/ year.
:face_vomiting:
forget software development... vague overpriced warrantys for imaginary certificates are where the real money's at
edit:
AHHHHHHHHHHHHH
