Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Costs for adding certificates to the build downloads?

7 views
Skip to first unread message

Rainer Bielefeld

unread,
Dec 10, 2020, 7:37:34 AM12/10/20
to
Hi,

at
https://seamonkeyde.wordpress.com/2020/11/14/seamonkey-2-53-5-has-been-released/#comment-1882
user 'helge' asked what it might cost to add a certificate to the
download files of SeaMonkey Builds ...

Does someone know an answer?

CU

Rainer

David E. Ross

unread,
Dec 10, 2020, 12:04:21 PM12/10/20
to
I believe there is no cost. Receiving a fee for adding a certificate
would strongly reduce the trust in the overall certificate database.

The certificate must first be vetted. See <https://wiki.mozilla.org/CA>.

--
David E. Ross
<http://www.rossde.com/>

With less than 5% of the world's population, the United
States has had more than 18% of the world's deaths from
COVID-19. Thank you President Trump. You are FIRED!!
Good-bye and good riddance.

Frank-Rainer Grahl

unread,
Dec 10, 2020, 1:19:58 PM12/10/20
to
Took a look a few months ago but ewong is busy with other tasks so didn't do more.

For Windows probably around 500 Euros a year for a basic certificate.

https://www.digicert.com/code-signing/

An EV certificate costs more but needs a hardware token. Not sure if this can
be even used in automation.

Apple is becoming a sh*tshow. Very proprietary signing mechanism and you need
to upload the binary for notarization. Cost is $100 a year but I didn't look
much into it. You need a real mac to do this too which adds to the cost.

As a sidenote. I expect them to lock down macOS eventually so in the long term
it becomes a giant smartphone like system with only an app store. Switch to
arm was only the start. Yes I know this was done to free their valued users
from the evil clutches of Intel. If you believe it I also have some very high
value swamp area for sale. Please inquire.

There is a bug open for adding this but one step as a time.

FRG

David E. Ross

unread,
Dec 10, 2020, 1:57:36 PM12/10/20
to
I think what you are describing are subscriber certificates, those
certificates Web sites obtain for installing on their Web servers. It
might also apply to E-mail certificates that users install in their
E-mail clients.

However, the original question was about installing certificates in the
downloadable SeaMonkey builds. Those would be root certificates.

Frank-Rainer Grahl

unread,
Dec 10, 2020, 2:26:59 PM12/10/20
to
The comment and the question are about code signing certificates. If you just
need to know if a download is good and untampered with you can use the
checksum file.

FRG

Rainer Bielefeld

unread,
Dec 11, 2020, 12:48:59 AM12/11/20
to
Rainer Bielefeld schrieb:
> user 'helge' asked

Hi,

thx, I pointed out this discussion here to helge in the blog.

CU

Rainer

Don Spam's Reckless Son

unread,
Dec 11, 2020, 12:28:49 PM12/11/20
to
I don't think Apple can lock MacOS down completely, shutting
applications such as LibreOffice or Firefox out would be a showstopper
for a lot of their users. Obviously Seamonkey does not have that leverage.

--
spammo ergo sum, viruses courtesy of https://www.nsa.gov/malware/
0 new messages