[Pidgin] Are the packages signed modified

Pidgin trac at pidgin.im
Sun Oct 26 11:23:38 EDT 2014


Page "Are the packages signed" was changed by datallah
Diff URL: <https://developer.pidgin.im/wiki/Are%20the%20packages%20signed?action=diff&version=8>
Revision 8
Comment: Add note about Windows XP not being able to validate SHA-256 signatures.
Changes:
-------8<------8<------8<------8<------8<------8<------8<------8<--------
Index: Are the packages signed
=========================================================================
--- Are the packages signed (version: 7)
+++ Are the packages signed (version: 8)
@@ -35,6 +35,7 @@
  * the installers and `pidgin.exe` are signed using the [http://msdn.microsoft.com/en-us/library/ms537361(v=vs.85).aspx Microsoft Authenticode] signing mechanism by Daniel Atallah using a certificate with a thumbprint of one of the following:
   * Pidgin 2.10.7 - 2.10.9: `C5476901C3C63FABF54CEBA9E3F887932A9579B5`
   * Pidgin 2.10.10+: `45b37f151a113d5070036421370813b9fba5cb13`
+    * Note that these signatures use the SHA-256 algorithm, which Windows XP doesn't support (you can still use GPG to validate the package)
  * all distributed packages (installers, debug symbols, binary zip file, gtk bundle zip file) are signed with [http://www.gnupg.org/ GPG] by Daniel Atallah (`DE890574`).
 
 The authenticode signature can be verified most easily by using Windows Explorer to look at the Properties of the installer executable.
-------8<------8<------8<------8<------8<------8<------8<------8<--------

--
Page URL: <https://developer.pidgin.im/wiki/Are%20the%20packages%20signed>
Pidgin <https://pidgin.im>
Pidgin

This is an automated message. Someone added your email address to be
notified of changes on 'Are the packages signed' page.
If it was not you, please report to datallah at pidgin.im.


More information about the Wikiedit mailing list