lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <AOEEJADALNJMOMEGHAIFCEGHEMAA.alan.list1@ntlworld.com> From: alan.list1 at ntlworld.com (Alan.l1) Subject: trust? - win2k source code tools > found this interesting... > iexpress.exe > signcode.exe > makecert.exe ( DigSig.dll ) It's not interesting or at least not to anyone who's played with code-signing. Two of these utils are from an old SDK and iexpress is probably the same as found in the IEAK. > who would you like your package to be certified from today sir? > \win2k\private\ispu\pkitrust\initpki\certs\ Any box running IE will have those (certs != private keys). -A