有没有办法对 MSI 文件进行签名以便 Norton Internet Security 识别它?
Norton Internet Security 无法识别我的 MSI 文件是否已签名。它由 Comodo 签名并颁发证书。 IE9 的 SmartScreen 过滤器将其识别为已签名,但 Norton File Insight 只是说“不可用”。我认为这是诺顿方面的一个错误,但在他们修复它之前,我宁愿不将我的 MSI 标记为可能的威胁。
我似乎无法通过赛门铁克技术支持的自动电子邮件来解决此问题,并且将文件列入白名单也不好,因为一旦我发布更新,它就会回到原点。有什么想法吗?
Norton Internet Security doesn't recognize my MSI file as being signed. It is signed and with a certificate issued by Comodo. IE9's SmartScreen filter recognizes it as being signed but Norton File Insight simply says "unavailable." I think this is a bug on Norton's part but until they fix it, I would rather not have my MSI flagged as a possible threat.
I can't seem to get past Symantec's tech support's auto emails to resolve this and whitelisting the file is no good because as soon as I post an update it's back to square one. Any ideas?
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(2)
因此,该错误似乎与 Norton File Insight 相关。它无法检查 MSI 文件中的数字证书。您可以在 Symantec 论坛中阅读相关信息:http://community.norton.com/t5/Norton-Internet-Security-Norton/Bug-with-File-Insight-not-detecting-digital-signature/mp/491390/highlight/false# M164254。一名工作人员最终承认这个问题将在 2012 年得到解决。
但是,来吧,检测数字证书并不困难,而且这是检查恶意软件的基本部分。恶意软件很少经过数字签名,在极少数情况下,它永远不会使用来自受信任机构的证书进行数字签名,除非它已被泄露。 IE9 认识到这些事实并采取相应的行动。
赛门铁克已经注意到这个错误至少两年了,而且它一定很容易修复。但问题仍然存在。
So, it seems that the bug is with Norton File Insight. It's unable to check MSI files for digital certificates. You can read about in the Symantec forum here: http://community.norton.com/t5/Norton-Internet-Security-Norton/Bug-with-File-Insight-not-detecting-digital-signature/m-p/491390/highlight/false#M164254. One of the staff members finally admitted that this is an issue that will be fixed in 2012.
But, come on, detecting a digital certificate is not exactly difficult and it's such a basic part of checking for malware. Malware is rarely digitally signed and in the rare case it's signed, it is never digitally signed with a certificate from a trusted authority unless it has been compromised. IE9 recognizes these facts and acts accordingly.
Symantec has had notice of this bug for at least two years and it must be easy to patch. But the problem continues.
我们似乎有同样的问题。我们的软件已被 IE 的 SmartScreen 签名并接受,没有问题。然而,我们现在收到报告称我们的下载被诺顿 360 抛弃。
因此,在我们进行调查的同时,我们希望随时了解该线程中是否有任何进展报告。
将更新我们有什么要报告的......
We seem to have the same problem. Our software is signed and accepted by IE's SmartScreen no problem. However, we're now getting reports that our downloads are tossed out by Norton 360.
So, while we're investigating, just like to stay in the loop to see if there is any progress reported in this thread.
Will update is we have anything to report......