Re: verifying cmd.exe

From: "RossettoeCioccolato" <gmgarner@xxxxxxxxxxxxxxxx>
Date: Mon, 3 Jul 2006 12:28:17 -0400

Mitch,

"Mitch Gallant" <jensigner@xxxxxxxxxxxxxxxx> schrieb im Newsbeitrag
news:OyTBxWonGHA.2432@xxxxxxxxxxxxxxxxxxxxxxx

However, note that for many PE, the simple SHA1 hash of the PE is not
actually what is stored in the cat file but rather a SHA1 hash of a
normalized form of the PE file (for cross-platform reasons). See note
here:
http://www.jensign.com/hash
- Mitch

Yes. That is correct.

Regards,

George.

.

References:
- Re: verifying cmd.exe
  - From: RossettoeCioccolato
- Re: verifying cmd.exe
  - From: "Jeffrey Tan[MSFT]"
- Re: verifying cmd.exe
  - From: RossettoeCioccolato
- Re: verifying cmd.exe
  - From: Mitch Gallant

Prev by Date: Re: InitializeSecurityContext returns SEC_E_UNSUPPORTED_FUNCTION on XP??
Next by Date: WinVerifyTrust api sometimes does not work.
Previous by thread: Re: verifying cmd.exe
Next by thread: "Run as" process tokens ?
Index(es):
- Date
- Thread

Relevant Pages

Re: CryptCATGetMemberInfo samples
... Here is a C utility to calculate the SHA1 hash and the ... hash for cat file entries for any file. ... So what exactly IS hashed by CryptCATAdminCalcHashFromFileHandle() ... Washington WA 98072-8661 | WFTPD, WFTPD Pro are Windows FTP servers. ...
(microsoft.public.platformsdk.security)
File Signature Verification and cat file entries
... of a .cat file GUI display? ... tab and the Tag list. ... I understand that these entries were simply SHA1 hash values of the target ...
(microsoft.public.platformsdk.security)
Re: verifying cmd.exe
... However, note that for many PE, the simple SHA1 hash of the PE is not ... actually what is stored in the cat file but rather a SHA1 hash of a ... before verify a PE file, we have to sign it first. ... catalog on the subject system and the catalog is signed. ...
(microsoft.public.platformsdk.security)