I’ve been trying to do it via cmd and omg I’m lost this made it look so easy
@meanjellybean89638 ай бұрын
Can you explain the way you make the self signed certificate.
@Dimensionscape27 күн бұрын
A self signed certificate is worthless in itself. You need to buy a certificate from provider like Sectigo.
@successspotu5 күн бұрын
I am a linux user how to do this ? Linux mint 21.3 Godot 4.3
@joshm90586 ай бұрын
That was great. Simple and easy. Thanks.
@Limitlessus10 ай бұрын
please can you tell me how did you generate the signature file? and if I develop from one computer and I have to generate the software from that computer only ??
@Dimensionscape27 күн бұрын
A self signed certificate is worthless in itself. You need to buy a certificate from provider like Sectigo.
@2smg11 ай бұрын
can you do this all in python?
@mybrainbrokeow3 ай бұрын
I had some issues with the python signtool. so not sure
@santoshs43937 ай бұрын
Can you make a video on How to create/install pfx file on our computer.
@Dimensionscape27 күн бұрын
A self signed certificate is worthless in itself. You need to buy a certificate from provider like Sectigo.
@irf15542 ай бұрын
That is great! But how can I get certificate?
@youssefayyar60112 ай бұрын
Hello, Thank you so much for your tutorials, can you please help by providing a better solution to protect JAR files from reverse engineering? Regards,
@akshaykumars24269 ай бұрын
Its showing unknown publisher after signing the exe. However the properties of exe showing the digital signature.
@AGAnimeBlogger05 Жыл бұрын
where do i get pfx file? where did u make that dimensionscape test cert, sir?
@Dimensionscape Жыл бұрын
You need to purchase a code signing certificate from a code signing authority like Sectigo.
@joshgilderdale997 ай бұрын
@@AI_HDR For real?? Chris is showing you how to sign your exe with the certificate you purchased. Not how to get a certificate for free smh
@krozareq5 ай бұрын
Sigstore, which is under the Linux Foundation, can provide certs for free for open source projects. They have several partners which make this happen.
@karimahmed25497 ай бұрын
hi , How purchase certificate please ?
@agha8093 ай бұрын
It signed succesfully but again it shows untrusted developer. What I did wrong?
@shilezi10 ай бұрын
thanks, this was very straightforward and highly appreciated.
@Akash-xv5sk Жыл бұрын
Hi, my AntiVirus is blocking Electron js Application to download,(i.e unable to download Electron JS Application) do you have any idea what is happening
@pixelvortex87875 ай бұрын
urn anti virus off cuz these DUMB anti viruses block 100% secure programs also calling them as virus
@Ralke117 күн бұрын
very cool and relevant
@guneetsingh14169 ай бұрын
I am converting an django app to exe, so using above will work because when I wasn't using pyinstaller in python its giving me nothing.
@testtest2955 ай бұрын
did you used new way with USB token? do you want record new video? thanks
@Dimensionscape5 ай бұрын
This still applies for physical tokens. Install your certificate in the keystore and then export it with the private key. Then you can sign your applications just as shown.
@salehrezq28 күн бұрын
How to generate that certificate itself?
@Dimensionscape27 күн бұрын
A self signed certificate is worthless in itself. You need to buy a certificate from provider like Sectigo.
@DiyintheGhetto Жыл бұрын
I forgot to ask one question why is it so costly for asign cert, And is there a cheaper way? Not to be all cheap and all but I'm seeing anywhere from $400 to $1000 a year or higher.
@Dimensionscape Жыл бұрын
Certificate authorities have to register with the operating system, and then they pass on the costs to you, plus their own fees. There are also different types of code signing certificates with different levels of trust. A signed binary helps Windows identify your application as safe and unadulterated. If someone were to alter your exe or dll with malicious intent or trying to impersonate your application with an altered version, it breaks the certificate and the binary is flagged by the operating system as un-trusted. In the end, your certificate not only gives your application a level of trust at the OS level, but it also makes the developer accountable. Getting a certificate is a process in which they must verify your identity or company as legitimate, which means if you create malicious software, it can be tied to you legally. Code signed with a certificate allows users to understand that when they open your application, it can be trusted. The high cost of investment ensures that you invest in your own trust and raises the investment cost to deter wrong doers. With that said, you should be able to find deals from reputable certificate authorities for around $100-200 if you do some searching. I hope this information helps. Thanks for watching and good luck!
@DiyintheGhetto Жыл бұрын
@@Dimensionscape Thank you. I searched around everything I found was between $400 and $1700 dollars. I have no clue which one to look for. I'm working on a little game in c# this is my first project I'm soon to release and already my virus scanner stopped it.
@AI_HDR11 ай бұрын
@@Dimensionscape How to get a PFX file and not some USB Drive shipped? I need to sign a code. Not to buy some USD drive and wait for arrival gods knows when.
@salehrezq28 күн бұрын
@@Dimensionscape I developed a desktop app; intended to deploy it for free with open source code, to find myself ended up stumbled across a non-free certificate 🤣😥
@salehrezq27 күн бұрын
Why my comment has been hidden?, I didn't see it anymore!
@mowax748 ай бұрын
3 Years ago i got a PFX file from Sectigo. The shown procedure worked fine till now. Now, after renewal, i only got an USB e-Token. I wonder how this would work now, i only can export the token as a .cert file. And the stick is not shown as a drive, where you could browse to the key file.
@Dimensionscape8 ай бұрын
I apologize, the required standard changed shortly after this video was published! It's still possible to sign your application this way but you have to use a tool such as OpenSSL to convert your certificate to pk12/pfx. I will publish a new video on this soon!
@joshgilderdale997 ай бұрын
@@Dimensionscape Ha! This is what I was after, wasn't working for me, but guess I need to convert to pk12. Thanks a bunch Chris!
@joshgilderdale997 ай бұрын
@@Dimensionscape I'd recommend adding a popup to the start of your vid to save confusion though! Took me an hour before I cam across this comment :D
@Dimensionscape7 ай бұрын
@@joshgilderdale99 Thank you for the recommendation! I will do that.
@joshgilderdale997 ай бұрын
@@Dimensionscape Ok so weirdly enough, I managed to get it working with the .cer filetype. It still wasn’t working even when pfx. The issue was my usb token wasn’t plugged into the machine when I tried to run so the sign wizard didn’t show, lol…
@anupsarkar9053 Жыл бұрын
Thank you for your help.
@imveryhungry1125 ай бұрын
Can you sign Windows device drivers using this?
@vanessatafoya77729 күн бұрын
I’m about to try this for drivers did it fork for you?
@DiyintheGhetto Жыл бұрын
Would Everyone need to do this if they use my desktop application? Also where do we get the Certificate at for our project?
@Dimensionscape Жыл бұрын
A code signing certificate can be purchased from a reliable Certificate Authority. You sign your binaries such as an exe before distributing it to your customers. Why is this important? Signing your binaries with a recognized certificate allows windows to identify your application and creates a layer of security for your users. Without being signed by a certificate, users that open an unsigned exe will receive an unknown publisher warning, which indicates that the file may be dangerous to open. Not only does signing your application prevent this, but it lets your users be assured that no one has tampered with the file since it was published by you.
@Justin-wc4vt8 ай бұрын
@@Dimensionscape Does Microsoft give any guidance on which authorities are reliable? I'm trying to release an app and disappointed there are no official guides.
@JustLikeMax Жыл бұрын
What is the Dimensionscape_Test_Cert file? And where i can get it?
@Dimensionscape Жыл бұрын
It's a self signed certificate I created for the purpose of demonstrating how to sign a binary using a gui tool. If you want to sign your exes, you need to buy a code signing certificate from a trusted certificate authority.
@4ksr Жыл бұрын
@@Dimensionscape from were i pay it ?
@selahattingungor536 ай бұрын
I don't have a certificate, how do I get it?
@Dimensionscape6 ай бұрын
You have to buy one from a certificate authority.
@edwardmacnab354 Жыл бұрын
do you have an example that doesn't use the GUI ?
@Dimensionscape Жыл бұрын
The GUI just wraps the command line tool in a user friendly way. The signtool command is straightforward if you're already familiar with the command line. learn.microsoft.com/en-us/windows/win32/seccrypto/using-signtool-to-sign-a-file
@edwardmacnab354 Жыл бұрын
@@Dimensionscape I always think the command line is way better .
@Dimensionscape Жыл бұрын
@@edwardmacnab354 Not everyone is comfortable with the command line as there are multiple GUI tools for development these days. If you are command line savy, you probably don't need a video tutorial to code sign your binaries.