Hi all
I want to timestamp an exe file using Microsoft's signtool. when I use verisign's timestamp server, it works fine. but when I try to use my local timestamp server I get the following error :The specified timestamp server could not be reached.
TSA's software is Sign server, I am on the same LAN with the TSA server and I can ping the TSA, also the sign server client script says that the timestamp is OK.
anyone knows what the problem is?
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
The Microsoft's signtool does not use the standard RFC#3161 format for timestamp requests/response but a similar but different format. Currently SignServer does not support this MS format but support for it could be developed on customer request.
My suggestion is to add support for it in the SignServer TSA. I have not yet read the specifications so I can not give you an accurate estimate on how much work it would required but if you are interested in supporting the development you can send an e-mail to info@primekey.se and we will look more closely at it.
Best regards,
Markus
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Hi all
I want to timestamp an exe file using Microsoft's signtool. when I use verisign's timestamp server, it works fine. but when I try to use my local timestamp server I get the following error :The specified timestamp server could not be reached.
TSA's software is Sign server, I am on the same LAN with the TSA server and I can ping the TSA, also the sign server client script says that the timestamp is OK.
anyone knows what the problem is?
Hi modaei,
The Microsoft's signtool does not use the standard RFC#3161 format for timestamp requests/response but a similar but different format. Currently SignServer does not support this MS format but support for it could be developed on customer request.
Best regards,
Markus
PrimeKey Solutions offers a commercial EJBCA & SignServer support subscription and training. Please see www.primekey.se or contact info@primekey.se for more information.
http://www.primekey.se/Services/Support/
http://www.primekey.se/Services/Training/
Thanks for the reply netmackan
so what solution do you suggest for timestamping exe files, using a signserver TSA?
My suggestion is to add support for it in the SignServer TSA. I have not yet read the specifications so I can not give you an accurate estimate on how much work it would required but if you are interested in supporting the development you can send an e-mail to info@primekey.se and we will look more closely at it.
Best regards,
Markus