Pages: 1 [2]
Author Topic: Free M3.8/M5.9 Flasher (Read/Write - Flash | Read - E2P)  (Read 1091 times)
d0xx
Jr. Member
**

Karma: +10/-8
Offline Offline

Posts: 34


WWW
« Reply #15 on: January 23, 2023, 04:29:39 PM »

Who exactly would they "trust"? Your binary is unsigned. There is no one to "trust".
I can take your binary, add a trojan to it and re-post it, and so can anyone else.

Get a code cert and sign it if you're remotely serious about software development. Even if you don't release the source.

Yes, fair, but you could also make an unsigned "trojan", which sideloads our then signed binary, so the user will not see what happens either.
The one who trust us, can download it here, and what others do, is not our "coffee" as we say in germany.
« Last Edit: January 23, 2023, 06:37:57 PM by d0xx » Logged

______________________________
www.ecu-codes.com
prj
Hero Member
*****

Karma: +575/-193
Offline Offline

Posts: 4982


« Reply #16 on: January 24, 2023, 05:40:34 AM »

Yes, fair, but you could also make an unsigned "trojan", which sideloads our then signed binary, so the user will not see what happens either.
This is not how this works. The sideloading tool would be unsigned, and such behavior also very likely will get caught by the default AV in Windows.
Quote
The one who trust us, can download it here, and what others do, is not our "coffee" as we say in germany.
No, the reality is you are spreading an unsigned binary without source code in 2023. There is no one to trust, because the binary is unsigned, so there is no trust chain.
It's like putting up a website without https in 2023.
It just shows your level, or lack thereof, nothing else.

Had your binary been signed, I would not have written anything about the source.
Your assumption that I needed to learn anything from it was very misguided, it was from the start about security.
Logged

PM's will not be answered, so don't even try.
Pages: 1 [2]
  Print  
 
Jump to:  

Powered by SMF 1.1.21 | SMF © 2015, Simple Machines Page created in 0.012 seconds with 17 queries. (Pretty URLs adds 0s, 0q)