[SERVER-51381] Sign Windows Executables - MongoDB Jira

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Backlog
Priority: Major - P3
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: Packaging
Labels:
None

Assigned Teams:

Server Development Platform

Description

We currently sign our MSIs, but we don't sign our executables. Signing our executables would prevent users running our binaries from seeing a "Publisher could not be verified" warning, allow our publisher reputation to convince antivirus products that new, unseen, release artifacts are valid, and allow our binaries to participate in AppLocker policies which locked systems down to running software by trusted publishers.

Attachments

Activity

People

Assignee:: Backlog - Server Development Platform Team (SDP)

Reporter:: Spencer Jackson

Participants:: Backlog - Server Development Platform Team (SDP), Spencer Jackson

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: Oct 05 2020 10:39:42 PM UTC

Updated:: Dec 06 2022 02:06:54 AM UTC