Re: problem with CAPICOM
- From: "Mitch Gallant" <jensigner@xxxxxxxxxxxxxxxx>
- Date: Sun, 5 Mar 2006 14:25:57 -0500
hmm I just ran this Authenticode verification utility on a the FP4.cat
WFP file and it passed signature verification without a problem . so
that means that any file hashes covered in THAT cap file are protected:
http://www.jensign.com/JavaScience/jauth/sources/Jauthnet.txt
CAPICOM SignedCode.Verify invokes some of the WinVerify api.
- Mitch Gallant
"jacekmichalek_ta_gmail.com" <jacekmichalek@xxxxxxxxx> wrote in message
news:1141573259.798928.105280@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I read about sfc, even used it to enumerate protected files - but it's
all sfc can do (according to API documentation). What about idea i
mentioned - check signature of catalog file, which holds hash of
system file to verify? I tried it using winverifytrust, setting
dwUnionChoice = WTD_CHOICE_FILE in WINTRUST_DATA structure, and
pcwszFilePath =catinfo.wszCatalogFile in WINTRUST_FILE_INFO
but i got negative response - TRUST_E_NOSIGNATURE.
On the other hand, when I examine this catalog file with signtool, i
get positive answer?
correct me if it;s wrong.
rgrds
Jacek
.
- Follow-Ups:
- Re: problem with CAPICOM
- From: jacekmichalek_ta_gmail.com
- Re: problem with CAPICOM
- References:
- problem with CAPICOM
- From: jacekmichalek_ta_gmail.com
- Re: problem with CAPICOM
- From: Mitch Gallant
- Re: problem with CAPICOM
- From: jacekmichalek_ta_gmail.com
- Re: problem with CAPICOM
- From: Mitch Gallant
- Re: problem with CAPICOM
- From: Mitch Gallant
- Re: problem with CAPICOM
- From: jacekmichalek_ta_gmail.com
- problem with CAPICOM
- Prev by Date: Gina and System service
- Next by Date: CryptCATGetMemberInfo samples
- Previous by thread: Re: problem with CAPICOM
- Next by thread: Re: problem with CAPICOM
- Index(es):
