GabrielMoraru

1. Tell us something about your background. 2. I don't think you say something like: "I would like to make a console program and then decide what the program is". You should rather say: "I need this program... which is the best way to implement it?" There are programs that are better as console and programs that are better as GUIs. And there are GUI programs that cannot ever be implemented as console (not without taking forever to finish a task). Example: Word, video players, web browser, image viewers, data viewers, etc. 3. There isn't anything very special about console programming in Delphi. If you know the language then it should be equal for you if you build a console of GUI program.

Fixed. The error was in a library called by the DPR project. The error msg was one of those "Error somewhere" errors you encounter in the C/++ world. Could have been fixed in seconds with a proper error message from the DSK framework. Obviously C++/Android is not as good as Delphi at generating error messages.

Yes I knew about the hardware token but I honestly tough that they apply only to the EV (my first certificate was an EV). Maybe because of the wording? Even the article that rvk pointed to, uses some strange wording "for standard code signing certificates" instead of the "OV". Basically, those 300 words of that article can be summarized as: "the rules for storing EV now also apply to OV". Dang it! _____________ PS: for completeness of information, the missing parameter from the command line to sing an exe file WITH a time server is: /tr http://timestamp.digicert.com /td SHA256 😞

Nope. That is old fact: If an unsigned executable has been downloaded and executed by many users over a long period without triggering significant antivirus or security alerts, systems like Microsoft's SmartScreen may assign it a positive reputation. I was in that situation. I also have a few small "blue" programs now. ________ Anyway, I added a time stamp to my signature/exe now. What is strange is that I had it before. I remember seeing the date in the "digital signature". This is why I highlight in a precious post that the timestamp is "Not available". So, I wake up my old backup HDD and dig some old programs and found that up to a certain date some, of them had proper signature. Probably somewhere along the road I f****d up the command line..... ________ Anyway, the discussion started from the fact that you cannot sign today an exe file without an electronic device. If you certificate is old enough, you can 🙂 But yes, it will be sad when I will have to upgrade my current certificate.

Over time the file acquires "trust" on Microsoft's servers. Once it goes in "blue" it will remain like that and it can be installed in new computers. Of course, this works as long as you don't change the exe file, not even one single bit (pun intended). 🙂

Yes. But once the application passes the "smart screen" it will remain "blue" even if the certificate expires.

As I said, until spring. It says: Issued by sectigo public code CA R36 Valid from: 2022-04-01 to 2025-04-01

Yes. I right-click the exe file and I see the "digital signature" tab. It says that it is signed under my name (digest algorithm sha 256) but the timestamp is "Not available". PS: VirusTotal.com says that the file has a valid signature.

I used SignTool\signtool.exe verify /pa Test.exe and I get:

Sorry. I don't remember all the details. I have found the email from the very first certificate from Sectigo about 8 years ago. They sent a smart card / e-token, and a link to something, protected by a password. But for the most recent one I purchased from KSoftware (in the end Sectigo) I don't remember anymore. I will search the emails from them. I have found only one email that links to a KB article which is down now "Service from our ticketing system will be restored shortly." Update: I have found this email: Dear Gabriel Moraru, Thank you for placing your order. The necessary background checks have been successfully completed and we are pleased to announce that your Code Signing Certificate has been issued. To collect your Code Signing Certificate, please click [here]. Your Collection Code is: xxxxxxxxxxxx Please use Microsoft Internet Explorer 8+ on Windows and Firefox ESR on Mac to collect your certificate. Code Signing Certificate cannot currently be obtained using Google Chrome, Apple Safari or Microsoft Edge. Support Page bla bla bla _____________ I think the PFX came attached to that email. My current certificate is still valid but it will expire this spring 😞

Hi Vincent. Which is what? The online article is for the general public. But below is a screenshot of the actual script. The pfx is in my computer. It works. Hi Patrick. You can send me private message with the name of the seller. I try to update that list every year. I did it also this year, but some only the top of the list. The prices vary wildly from one year to another. Smallest price If you find a cheaper seller, please let me know! I will put it on top of my list right away!

Because they charge your $130 for that USB stick (so called "packing and handling fees"). They make more money from that USB than they make from the token itself.

I get this error when I try to run my FMX program on my android phone: Both file exists: Windows -> shlwapi.dll c:\Delphi\Delphi 11\CatalogRepository\AndroidNDK-21-22.0.48361.3236\android-ndk-r21\toolchains\aarch64-linux-android-4.9\prebuilt\windows-x86_64\aarch64-linux-android\bin\ld.exe The NDK folder is 3,508,921kB. _______ It worked yesterday. What I have changed since then, was to install a USB driver from my phone's manufacturer (OnePlus Nord): OnePlus_USB_Drivers_Setup.exe It installed this file: c:\Android\adb.exe and more in Program Files. Uninstalling the program will not delete the c:\Android\ folder.

Stay away from USB tokens. Use a seller that does not force you to use such device. For my token I only needed the "singtool.exe" from Microsoft, which also DOES NOT requires you to enter the password every time you want to sign an exe file.💪

Yes. Delphi's documentation was always in a deplorable state. Since I had problems installing the SDK, I wanted to follow their documentation. ----------- I used FMX some years ago and I don't remember having any of this problems. Is FMX getting worse instead of better? (Rhetoric question)