Krzysztof Jurewicz
Follow

Code signing of binaries on will come to an end because signing certificates are practically unavailable to individual developers. The only viable option (Certum, ) uses . Sadly, ignoring the fact that SHA1 has been broken seems to be common in Poland. The market of certificates seems to be highly regulated, yet still the regulation has not prevented this situation occuring.

forum.palemoon.org/viewtopic.p

From IRC:

22:15 <@MoonchildPM|Away> KrzysiekJ: You may have to write an addendum to the article. They finally got back to me (potentially after having my post show up for them) and there is an extremely bad and fragile workaround possible to make SHA256 signing with their crypto hardware possible that I found out (no thanks to their terrible support and not something discoverable even for tech-minded devs).

Sign in to participate in the conversation
capitalism.party

capitalism.party is a paid signup Mastodon instance funded directly by users purchasing accounts for just $5. An inexpensive alternative to free signup platforms, we impose direct economic cost on trolls who want to avoid blocks by creating many accounts. This instance will actively respond to any problematic users.