Lu Wei <luwe...@address.invalid> wrote:
> File's signature is checked from property page, which I assume you know;
> To check a certificate, in system control panel->internet options (or
> internet properties, something like that)->contents->certificate, you can
> check the CA's, personal certificates, untrusted certificates, etc. I
> uploaded a snapshot to
http://imageshack.us/photo/my-images/201/certc.jpg/
> . And unfortunately "Adobe Systems Incorporated" is in the untrusted
> certificates list. I am certain that it's not me who moved it to the
> blacklist.
I do not understand certificates, but I just looked on my Windows XP system
at the certificates lists. With 'intended purpose' set to 'All', I can't
find any mention of "Adobe Systems Incorporated" (or Adobe anything) in any
of the various tabs, and certainly not in the Untrusted Publishers one.
Ironically the first entry in the Untrusted Publishers list is
issued to:
addons.mozilla.org
issued by: UTN-USERFirst-Hardware
friendly name: Fraudulent
(whatever that means). Selecting it and clicking View I got told that it
was revoked by its certificate authority, but it doesn't say when this
happened.
Only once have I ever manually done anything with certificates, and then it
was importing a specific personal one.
I find it puzzling that my certificates list doesn't include anything
Adobe-related. I don't use Adobe Acrobat, but do use AIR and Flash, so
presumably if the Adobe certificate is certifying their own website one
would expect to have it. Why do you, but not me?
Next I looked at the installers I have for Flash
20120219 1658 V11-1-102-62 XP-IE install_flashplayer11x32ax_mssd_aih.exe
20120219 1657 V11-1-102-62 FF install_flashplayer11x32_mssd_aih.exe
(these are the names I stored the files under here, being the data and
time I fetched them, version info, target browser, and filename as
set by Adobe.)
Both of these files say under Properties that they're signed ok... by Adobe
Systems Incorporated. The Certification Path shows
VeriSign
VeriSign Class 3 Code Signing 2010 CA
Adobe Systems Incorporated
and interestingly(?) if I click on either of the first two, the button 'View
Certificate' is offered, but if I click on the Adobe line, it's greyed out.
So do I have an Adobe Systems Incorporated certificate here, or not? Maybe I
don't - maybe this is telling me that Adobe had the certificate and signed
the file, but VeriSign are guaranteeing that... and I do have a copy of the
VeriSign certificate. Or something.
I do know though that periodic Microsoft Windows Updates do things with root
certificates - is it possible that you've not applied one of these fixes?
If you were to export and then delete the untrusted certificate, I wonder if
what's left would then appear to certify the file ok?
You might be better asking about this on a forum where people gather to talk
about security issues, eg:
http://www.wilderssecurity.com/index.php
--
Jeremy Nicoll - my opinions are my own.