nhyatt/osslsigncode
1
0
Fork 0
mirror of https://github.com/mtrojnar/osslsigncode.git synced 2025-04-05 01:00:11 -05:00
Code Issues Projects Releases Wiki Activity

remove warning

Browse Source
This commit is contained in:
olszomal 2023-01-11 13:47:16 +01:00 committed by Michał Trojnara
parent 1155a9c338
commit fef65536f6
1 changed files with 1 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
README.md
View File

@ -181,9 +181,7 @@ in the unauthenticated blob, as an attacker could modify this. Do NOT, under
any circumstances, put a URL here that you will use to download an additional any circumstances, put a URL here that you will use to download an additional
file. If you do do that, you would need to check the newly downloaded file is file. If you do do that, you would need to check the newly downloaded file is
code signed AND that it has been signed with your cert AND that it is the code signed AND that it has been signed with your cert AND that it is the
version you expect. You should consider using asymmetrical encryption for the version you expect.
data you put in the blob, such that the executable contains the public key to
decrypt the data. Basically, be VERY careful.
## BUGS, QUESTIONS etc. ## BUGS, QUESTIONS etc.