Wtf... why is this SO complicated just for putting some information on a file. Holy moly... I still don´t understand everything but I try to watch it some more times.
I was following along just fine until 9 minutes in, when you all of a sudden had a ca-server on apache. Didn't see that coming... Is there a tut you can point me to, to set up the ca-server? I'm guessing its a virtual server.... your tut was working great so well thus far, thanks.
This video builds on a prior one. If you look at the cards (upper right, icon that looks like a lower case "i") you will see the other videos. The specific one you're looking for (root ca) is this one: ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-oxDUdjbdfR0.html
@@WiBitnet thanks a lot, I will watch it now. Edit: Yes, I found that tutorial also. I see where I asked the question wrong, 'set up the ca-server? ' What I actually meant was; How do I create a ca-server?
@@rodmanunderhilliii8198 The way I did it in that video was I used Virtual Box and installed Ubuntu Server. That is what the "ca-server" is built on. Does that answer your question? The two videos aren't related, but they build on each other. The CA video is about signing certificates for web servers. Then I made the other one showcasing that you can use the same CA (certificate authority) server to sign an executable as well. That was the idea.
@@WiBitnet Yes that does, I've used Virtual box for windows 3.1, 98 and Linux, so I'll give it a try, thanks. I'm glad I didn't actually have to have to get access, to an online server.
@@rodmanunderhilliii8198 Sweet! Let me know if you have any issues. Make sure when you build the VM, set the networking up as bridged so it will have its own IP address. Just makes things easier.
The WibiCert Authority exist only in your machine. So how to make it global ? I want people downloading my executable from their machine too. Is there any 'free' way ? Another question: I also own a website, is there any way to sign/authorize my executable using my domain certificate or something like that ?
The "free" way to do it is to distribute your public CA certificate. Otherwise you need to use a trusted CA that is already installed on the users machine. If you have your own website, my guess is that you have an SSL certificate signed by someone like GoDaddy or some other trusted CA. If you have a self signed CA then, ya you can do that. But you can't sign something on behalf of Microsoft, for example, without access to their CA. They may give you a trusted cert for your website, but you cannot use that cert to make trusted certs on their behalf. Let me know if that makes sense.
For those who want their app to always run as administrator withought Visual Studio, you can right click on the exe file and click properties, then click copatability and then check off "Run this program as administrator."
@@WiBitnet I installed the root-ca.crt to Trusted root certificate authorities, signed my exe with codesign.pfx, but smartscreen warning still appears when i download the signed exe from a website. Your tutorial is great, but this is annoying. Do you know any solutions?
Great video, thanks! I've a question, are there a manner to get signature certificate approved by CA for free, like Let's Encrypt for websites? Otherwise can You advise me some CA to buy it, not much expensive? Thanks again
For free? You can create your own CA. Other than that, people are gonna charge you. If you work for a large company you may have internal CA certs that you can use. But, companies like GoDaddy won't digitally sign your data, because they would be them putting their stamp on it.