How to publish a . EXE secure, other than through Click Once . Net

Asked

Viewed 1,504 times

7

My scenario is composed as follows:

I have applications, which are configured according to each customer, are apps sold in bulk, I have a support system, which automates this configuration and generates one executable per customer.

After generating this executable (Inno Setup Installer), the same and sent to ftp from our site, so far so good.

However, when client goes to download this system it displays that message that the file might not be safe if you want to keep.

ex: http://goo.gl/2OSqgV

What do I need to do to make this file "safe", is it something on the site? or in the application? We are losing many customers due to this complication in the download.

[upd]

Following the friend’s tip I tried:

But I still could not solve my problem, I managed the certificate through the makecert, gave the Sign. The download still feels like dangerous.

So I took this certificate and installed in my machine, then the system detected correctly, but I can’t install this certificate on the machine of each customer, so I can only use paid certificates?

c# .net ftp inno-setup

1 answer

5


Basically you will need a Certificado Digital de Assinatura de Código.

There are two ways to get one Certificado Digital:

  • Certified Supplier - Ex: Comodo
  • Generate your own certificate with Makecert

And for you to sign the aplicativo can use a Authenticode of microsoft the Signcode.

To have more knowledge about this I suggest a research about Certificado Digital, Authenticode, etc..

Generating your own certificate is not a valid option, see that it is for testing only. The use of a certificate makes sense only by that it is issued by an entity that is considered reliable by your browser and it can confirm that the certificate really is valid. - @Leandro Godoy Rosa

Links for consultation:

Authenticode Deployment and Signature

Commotion

Certificado Digital

  • Creating my own Certificate, can I have any problem? Why would it be advantageous to buy? if I can do mine? Thanks for the reply @Meuchapeu has cleared up some things.

  • I believe I would have no problem creating the certificate itself, but it would not be issued by a Certificadora Digital. Take a look at this link --> http://www.devmedia.com.br/gerando-um-certificado-digital-proprio/31506

  • I may have misunderstood, but I haven’t been able to solve my problem yet, I generated the certificate, I gave Sign. The download is still as if it was dangerous, then I took this certificate and installed it on my machine, then the system detected it correctly, but I can’t install this certificate on each client’s machine, so I can only use paid certificates?

  • 4

    Generating your own certificate is not a valid option, see that it is only for testing. The use of a certificate only makes sense because it is issued by an entity that is considered trustworthy by your browser and it can confirm that the certificate is actually valid.

  • Exactly what @Leandrogodoyrosa.

  • @Meuchapeu I think you can complement your answer with Leandro’s comment.

  • @Meuchapeu a server, containing an SSL certificate, could aid in something?

Show 2 more comments

Browser other questions tagged c# .net ftp inno-setup

You are not signed in. Login or sign up in order to post.