• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Digitally sign (code sign) file on linux server?

D

DaveSimmons

Elite Member
In Windows we sign our install exes using MS' SignTool to add our Thawte cert to the file.

Is there an equivalent program for Linux? We'd use PHP scripting so either a PHP package or an external application would work.
 
GnuPG? Maybe there is something more specific to install packages, but you can sign an encrypted file with it.
 
It can be done. The most commonly used signature making / modifying tool for UNIX type systems (and actually also the low level tool used in many non-UNIX ones) is OpenSSL.

OpenSSL has a library that you can call from another program, and it also has a very standard set of command line tools you could invoke from the shell or PHP or whatever.

Here's some info which seems to say that all the tools you need are in the 0.9.9+ versions of OpenSSL whereas you may need some additional format conversion utilities for PVK format if you're using older OpenSSL tools.

http://sourceforge.net/projects/osslsigncode/
http://wiki.cacert.org/wiki/Authenticode
http://www.matthew-jones.com/articles/codesigning.html
http://www.tech-pro.net/export-to-pvk-spc.html
http://www.drh-consultancy.demon.co.uk/pvk.html
http://www.petefreitag.com/item/117.cfm

 
Thanks, that looks promising.

I know how to do it on a Windows PC for our normal installs, but now we want to create customized self-extracting exes on a linux server and code sign them. I know a little Perl and PHP but haven't been up to date on my 'nix since last century in college.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top