We're updating the issue view to help you get more done. 

As a user of KfW, I want the MSIs to be signed with a SHA-256 certificate so I can avoid annoying security warnings

Description

Widows 7 and later stopped accepting SHA-1 certificates for code signing as of 2016-01-01. MSIs can't be dual signed so we either have to sign separate installers for Vista and earlier (using a SHA-1 cert), or ignore them. We'll probably ignore them unless there is a specific and compelling need.

Need to get Symantec to reissue our cert with SHA-256.

Status

Assignee

Unassigned

Reporter

Tom Yu

Labels

None

Priority

Normal