On Thu, Jul 28, 2005, coco coco wrote: > > Ok, sounds simple enough, so I create a root CA with openssl, then sign a > certificate > for a fictitious user, which use that to sign an Office VBA (just some dummy > stuff, doing nothing). > > After loading up my VBA, I see it has no timestamp, and according to the > msdn site, the signature is timestamped by connecting to the CA (which > issued > the certificate) and get the timestamp signed by that CA. And this is done > in the background, during code signing. I digged around, there's no other > way to do it. >
Well when I tried the timestamp could be added by using any appropriate timestamping server. At the time only VeriSign's was available, there may be a few more now: I notice there's a Thatwe timestamping CA in MSIE. The authenticode timestamping stuff at the time used a non-standard format, though it was documented. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
