Eset certificate about to expire

Discussion in 'ESET NOD32 Antivirus' started by vtol, May 30, 2010.

Thread Status:
Not open for further replies.
  1. vtol

    vtol Registered Member

    Joined:
    Apr 8, 2010
    Posts:
    774
    Location:
    just around the next corner
  2. vtol

    vtol Registered Member

    Joined:
    Apr 8, 2010
    Posts:
    774
    Location:
    just around the next corner
    counting down, Eset care to get it fixed? Quality assurance and Compliance department on vacation?
     
  3. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    New installers will be signed using a new certificate.
     
  4. jimwillsher

    jimwillsher Registered Member

    Joined:
    Mar 4, 2009
    Posts:
    668
    Many thanks Marcos.

    Can you clarify something please? I've got 5 or 6 PCs to roll out next week, am I likely to have problems pushing out 4.2.40 due to this? Or will clients see warning dialogs?

    Sorry if it's a lame question, I've not dealt with code-signing cert expiry before.



    Jim
     
  5. vtol

    vtol Registered Member

    Joined:
    Apr 8, 2010
    Posts:
    774
    Location:
    just around the next corner
    you might get them on WIN 7 64bit where drivers have to have a valid code signature. the eset driver eamonm.sys is using the very same certificate. hence there might be alert windows popping up after June 09.
     
  6. Hollowstriker

    Hollowstriker Registered Member

    Joined:
    Mar 28, 2010
    Posts:
    50
    Not to worry. You won't be getting any errors nor issues as a result of ESET's code signing certificate expiring- ESET has prudently chosen to use a timestamping service which ensures that even if their certificate expires, the signature will still verify correctly.

    If you are still worried about this, try setting your computer clock to sometime beyond the expiry date of the certificate, e.g. 6 July 2010. You will see that the certificate still verifies and nothing abnormal happens (except that your computer clock is off by a month!)

    Microsoft certificate which has expired in 2007, installer is still valid
    http://img443.imageshack.us/img443/7818/screenshotupload.png

    ESET's timestamped installer
    http://img143.imageshack.us/img143/8056/screenshotupload0.png
     
  7. vtol

    vtol Registered Member

    Joined:
    Apr 8, 2010
    Posts:
    774
    Location:
    just around the next corner
    that a driver install on win 7 64bit?
     
    Last edited: Jun 6, 2010
  8. vtol

    vtol Registered Member

    Joined:
    Apr 8, 2010
    Posts:
    774
    Location:
    just around the next corner
    the certificate is also installed in the IE as root certificate and being used when having SSL protocol filtering enabled. would not be surprised if that caused havoc after June 09 when having SSL traffic injected as browsers will recognise it as expired then.
     
  9. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    A root certificate is generated as soon as SSL checking gets enabled. If you disable SSL checking and re-enable it, the root certificate will be generated from scratch.
     
Thread Status:
Not open for further replies.