Authenticode checks the signature against the data which it supposedly signs, to determine if it is valid. It returns one of the following <Response> values:
Success
- the data was
signed, the signature was valid and the publisher was
trusted. ScanFailed
- the data was
signed incorrectly. NoCertificate
- no
certificate was present. CertificateExpired
- the
certificate has expired. NotTrusted
- the data has
been tampered with or the WEBsweeper host has not been
instructed to trust the software publisher. The authenticode
validator, AUTWNT
, is configured to check the
authenticity of digitally signed data. It is found in the [Validation]
section of the http and ftp configuration files, HTTP.CFG
and FTP.CFG.
[Validation]
Authenticode=AUTWNT
[Authenticode]
0=Success
...
721152=NoCertificate
721153=CertificateExpired
721154=CertificateExpired
...
721161=NotTrusted
...
614435=NoCertificate
[Disposal]
DefaultDisposal=Clean
Success=Clean
...
ScanFailed=NotSure
...
;NoCertificate=BlockedNoCertificate
CertificateExpired=BlockCertificateExpired
NotTrusted=BlockNotTrusted
...
VIRUSPRESENT=VIRUS
![]() |
See the Disposal section on page 7-22 for more details. |
Firstly, since each individual user can have their own set of trusted publishers you must choose which local user will administer the WEBsweeper service. You may create a WEBsweeper user specifically for the purpose.
To select the publishers you wish to trust, perform the following steps:
![]() |
To remove a trusted publisher, select the name from the Trusted Publishers and Issuers of Credentials area of the Authenticode(tm) Security Technology dialog box and then click on the Remove button. |
Secondly, the WEBsweeper service must be configured to run as the chosen user (see page 5-66). This information must always be re-entered if you upgrade your WEBsweeper installation.
This is achieved using the following steps:
1 This must be Internet Explorer
version 3.02 or above.
Copyright © 1998, Content Technologies Limited. All rights reserved.