Obtain a certificate and sign an exe on Linux

1.2k Views Asked by Denis Hernandez At 04 April 2025 at 10:18

Where can I get a certificate to the enterprise where I am working for sign an executable that we distribute? Because now, If the clients download the .exe file from Internet, Windows displays the security warning dialog "unknown publisher" when they execute it.

Futhermore, once I get it, how can I sign the executable on Linux?

Original Q&A

There are 1 best solutions below

Alexander On 25 November 2014 at 11:39 BEST ANSWER

Mono's signing tools allow to sign an executable on a Linux box.

First convert your .pfx certificate to .pvk and .spc files :

openssl pkcs12 -in authenticode.pfx -nocerts -nodes -out key.pem
openssl rsa -in key.pem -outform PVK -pvk-strong -out authenticode.pvk
openssl pkcs12 -in authenticode.pfx -nokeys -nodes -out cert.pem
openssl crl2pkcs7 -nocrl -certfile cert.pem -outform DER -out authenticode.spc

And then sign it :

signcode \
 -spc authenticode.spc \
 -v authenticode.pvk \
 -a sha1 -$ commercial \
 -n My\ Application \
 -i http://www.example.com/ \
 -t http://timestamp.verisign.com/scripts/timstamp.dll \
 -tr 10 \
 application.exe

Obtain a certificate and sign an exe on Linux

There are 1 best solutions below

Related Questions in LINUX

Related Questions in CERTIFICATE

Related Questions in EXE

Related Questions in SIGN

Trending Questions

Popular # Hahtags

Popular Questions