Signing only the bundle would prove that it came from your organisation and
hadn't been tampered with - would that be enough?
When run it would unpack the unsigned burn engine and the unsigned MSIs. Does
anyone know if that would show the user a warning (or multiple warnings?)
Bob: would it be possible to have the burn engine signed (by Microsoft) in the
released WiX 3.6 or have an option to specify the burn engine in the .wxs file
- as I understand it you currently have to sign the burn engine every time the
bundle is built, even though it's the same executable.
Pete
------------------------------------------------------------------------------
RSA(R) Conference 2012
Mar 27 - Feb 2
Save $400 by Jan. 27
Register now!
http://p.sf.net/sfu/rsa-sfdev2dev2
_______________________________________________
WiX-users mailing list
WiX-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/wix-users
