Page 2 of 2 FirstFirst 12
Results 11 to 20 of 20

Thread: Symantec Endpoint Protection absolutely hates ThinBundle

  1. #11
    thinBasic author ErosOlmi's Avatar
    Join Date
    Sep 2004
    Location
    Milan - Italy
    Age
    57
    Posts
    8,818
    Rep Power
    10
    More or less yes.
    To be valid, a certificate need to be signed by a CA (Certification authority) trusted world wide or you need to manually install a CA and trust it.

    To check what CA are installed into your Windows Computer just do the following:

    • Press the Windows key + R to bring up the Run command, type certmgr.msc and press Enter.
    • When the Certificate Manager console opens, expand any certificates folder on the left. In the right pane, you'll see details about your certificates



    Attached an example of one of my computers:
    Capture.PNG
    www.thinbasic.com | www.thinbasic.com/community/ | help.thinbasic.com
    Windows 10 Pro for Workstations 64bit - 32 GB - Intel(R) Xeon(R) W-10855M CPU @ 2.80GHz - NVIDIA Quadro RTX 3000

  2. #12
    Junior Member
    Join Date
    Mar 2006
    Posts
    2
    Rep Power
    0

    Code Signing

    Not sure if it helps, you could try KSoftware. Relatively inexpensive ($84/yr). It is on my list of certs to test signing my own code.

    https://www.ksoftware.net/code-signi...html#read_more

  3. #13
    thinBasic author ErosOlmi's Avatar
    Join Date
    Sep 2004
    Location
    Milan - Italy
    Age
    57
    Posts
    8,818
    Rep Power
    10
    Thanks a lot.
    Very nice we can collect personal thoughts and see if we can find a solution.

    Also found that COMODO lower their prices for personal certificates:
    https://comodosslstore.com/codesigning.aspx
    https://comodosslstore.com/code-sign...ng-certificate
    www.thinbasic.com | www.thinbasic.com/community/ | help.thinbasic.com
    Windows 10 Pro for Workstations 64bit - 32 GB - Intel(R) Xeon(R) W-10855M CPU @ 2.80GHz - NVIDIA Quadro RTX 3000

  4. #14
    just recently the Symantec false positives discussed again with purebasic exe's, not only with thinbasic. i don't believe the purebasic team will ever buy a certificate for their product even it is a commercial product and that phenomena happened from many many years ago.
    it is the responsibility of the end user. i think the best opinion in that purebasic thread is this one as far as i can see:
    https://www.purebasic.fr/english/vie...=73234#p539448
    Last edited by primo; 12-08-2019 at 18:29.

  5. #15
    Member DirectuX's Avatar
    Join Date
    Oct 2018
    Location
    France
    Posts
    417
    Rep Power
    55
    Quote Originally Posted by ErosOlmi View Post
    Very nice we can collect personal thoughts and see if we can find a solution.
    Personal though : of course it bother me when I've got AV alerts (had until whitelisted thinbasic). I already got on with trusting Eros & Petr, so, having thinbasic signed is not in my wish-list. However, if thinbasic's files could be CRC hash checked it would be a plus.


    Quote Originally Posted by Michael Hartlef View Post
    The problem i see here is the usage of upx. Also some oxygen stuff keeps triggering my av at times. Is the usage of upx needed?
    I remember those alerts, same question.
    ThinBasic 1.11.6.0 ALPHA - Windows 8.1 x64

  6. #16
    thinBasic author ErosOlmi's Avatar
    Join Date
    Sep 2004
    Location
    Milan - Italy
    Age
    57
    Posts
    8,818
    Rep Power
    10
    Quote Originally Posted by DirectuX View Post
    Personal though : of course it bother me when I've got AV alerts (had until whitelisted thinbasic). I already got on with trusting Eros & Petr, so, having thinbasic signed is not in my wish-list. However, if thinbasic's files could be CRC hash checked it would be a plus.
    Great suggestion.
    Shortly I will add MD5 hash value to future thinBasic downloads.

    In current thinBasic 1.10.8 you will find a tool under thinAir menu \Tools\User Tools\ called thinDownload (it is in a form of exe and thinBasic source code under \thinBasic\thiAir\Tools\ ...).
    It is an experiment to add thinBasic download into thinAir.
    I will add MD5 hash checking in that tool.
    www.thinbasic.com | www.thinbasic.com/community/ | help.thinbasic.com
    Windows 10 Pro for Workstations 64bit - 32 GB - Intel(R) Xeon(R) W-10855M CPU @ 2.80GHz - NVIDIA Quadro RTX 3000

  7. #17
    thinBasic author ErosOlmi's Avatar
    Join Date
    Sep 2004
    Location
    Milan - Italy
    Age
    57
    Posts
    8,818
    Rep Power
    10
    Added more download options in thinBasic web site download section:
    • .ZIP file
    • .7z file
    • .EXE file


    It seems some AV software and Browser download are more sensible to one type and less to the other.


    Capture.PNG
    www.thinbasic.com | www.thinbasic.com/community/ | help.thinbasic.com
    Windows 10 Pro for Workstations 64bit - 32 GB - Intel(R) Xeon(R) W-10855M CPU @ 2.80GHz - NVIDIA Quadro RTX 3000

  8. #18
    Member DirectuX's Avatar
    Join Date
    Oct 2018
    Location
    France
    Posts
    417
    Rep Power
    55
    Note: Symantec has many false positives: https://www.av-comparatives.org/test...st-march-2019/
    and code signing seems not to be a cure-all solution : https://stackoverflow.com/questions/...lease-software
    ThinBasic 1.11.6.0 ALPHA - Windows 8.1 x64

  9. #19
    There is what is like a sandbox look the utilities freeware and commercial
    https://alternative.me/deep-freeze
    there is a browser in a box
    https://www.chip.de/downloads/BitBox..._72247952.html
    600 MB
    https://www.chip.de/downloads/BitBox..._48987303.html

    it is said used in the German Gov offices , there are a free version and a paid version
    i have tried to instal it years ago but failed since it needs components from the web and i can't access these components. but it seems nice. will try it again with windows 7 x64. if successful i will report. i am using old tool called Returnil in windows xp , and i don't use antiviruses at all from several years when mcafee destroyed all my windows settings.
    Last edited by primo; 14-08-2019 at 19:11.

  10. #20
    Junior Member
    Join Date
    Jun 2023
    Location
    United States
    Posts
    1
    Rep Power
    0
    Quote Originally Posted by ErosOlmi View Post
    Thanks a lot.
    Very nice we can collect personal thoughts and see if we can find a solution.

    Also found that COMODO lower their prices for personal certificates:
    https://comodosslstore.com/codesigning.aspx
    https://comodosslstore.com/code-sign...ng-certificate
    Well after the current HSM inclusion in the code signing process, the prices of certs have increased manifold, But I obtained a Comodo Code signing certificate from SignMyCode which also offers other OV and EV Code Signing Certificates at affordable pricing than others in the market!
    https://signmycode.com/buy-code-signing-certificates

Page 2 of 2 FirstFirst 12

Similar Threads

  1. Software Protection...
    By Kuron in forum Development
    Replies: 17
    Last Post: 25-10-2017, 00:36
  2. Linus Torvalds hates C++
    By ErosOlmi in forum Other languages
    Replies: 18
    Last Post: 19-08-2010, 04:29
  3. Replies: 10
    Last Post: 21-03-2008, 10:54
  4. thinBundle: here it is
    By ErosOlmi in forum thinBundle
    Replies: 2
    Last Post: 21-02-2007, 01:40
  5. thinBundle !?!?
    By ErosOlmi in forum thinBundle
    Replies: 3
    Last Post: 11-02-2007, 12:35

Members who have read this thread: 0

There are no members to list at the moment.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •