Hi Dirk. On Mon, Jan 15, 2024 at 1:35 PM Dirk Hohndel via subsurface <[email protected]> wrote: > > Not being able to leave your house, a laptop and internet connection... ideal > conditions to keep dinking around with stuff :)
Sounds like the perfect weekend. :-P > So this should now be the https://subsurface-divelog.org/latest-release/ page > - clearly showing that this is the Latest CICD Release. > > In addition, there is a https://subsurface-divelog.org/current-release/ > Current Release page. With the goal to iterate this more slowly - maybe once > a week. And, now that I had the time to figure out how this can work (see > above), this even links to a SIGNED macOS DMG. Looking good! I would probably add a link to the other page to the top of each page, 'if you want the latest version, go [here]' / 'if you want a more stable version, go [here]', or else users will get locked in once they have bookmarked one of the pages. Also, I am wondering if the iOS paragraph should be above 'Linux' - this will make it show above the fold for most users, and reduce the number of users posting questions after not finding it. And I am wondering if it would be better to use more distinguishable names for the 'release tracks' than 'latest' / 'current' - I suspect that users will confuse these when talking about them in support posts. Maybe 'nightly' vs. 'weekly'? > > Finally, app signing. > Given how painful macOS makes it to install unsigned apps, I think I'll need > to figure out how to sign at least the "weekly" builds. I doubt that I can > truly automate that, but maybe I can figure out a way to keep up with things. > > > Done > > As for Windows - that's a harder problem. The signing mechanisms for Windows > are either prohibitively expensive (even with the generous donations from > some of you - we are talking around $300-500 a year plus hardware cost (as I > would need an actual real Windows machine for this -- apparently doing this > in a VM no longer works) for what is essentially a blessed random number. The > old system that was more affordable (~$100/year) has been killed by Microsoft > when they started making additional requirements (including allowing signing > certificates only when they are on hardware keys). And as I mentioned > before, I'm seeing a lot more companies release unsigned apps for Windows > again. > If a better and more realistically priced solution pops up, I'll happily > revisit this topic. > > > Also, some googling and following countless broken links later... it appears > there is a not quite as expensive option: > https://cheapsslsecurity.com/fastssl/code-signing-certificate.html > > With the required hardware token, a three year certificate is about $500 with > shipping - so $170/yr. That is still a lot, but seems more doable. > Now all I would need is a Windows PC 🤣 > > So, question to the Windows users here... how often do you see unsigned apps? > How much of an issue is it to have the Subsurface installer not signed. As I > keep saying, I don't use Windows myself, so it's really hard to judge for > me... > > Thanks > > /D > _______________________________________________ > subsurface mailing list > [email protected] > http://lists.subsurface-divelog.org/cgi-bin/mailman/listinfo/subsurface _______________________________________________ subsurface mailing list [email protected] http://lists.subsurface-divelog.org/cgi-bin/mailman/listinfo/subsurface
