SebCT
SebCT
Since 2024.2.0 some components (DLLs and PS1/PSM1/PSD1) of the module are signed with a untrusted certificate/CA called "ameroot" - here is the output with sigcheck from Sysinternals, also affects AppLocker...
> No certificates are trusted on your machine by default. They are signed with updated certificates, you will need to trust those when running AllSigned. That's not true - there...
> This issue has been labeled as resolved, please verify the provided fix (or other reason). Not resolved yet
Thanks, working nearly perfect except one DLL: AppLocker is still having a problem with the certificate(s) and counter signing of this file here: .vscode\extensions\ms-vscode.powershell-2024.2.1\modules\powershelleditorservices\bin\common\System.Reactive.dll The DLL "System.Reactive.dll" is counter signed...
I see, but could the security engineers at Microsoft take a look because of AppLocker Application Allowlisting? Because with this new counter signed DLL a publisher rule doesn't work anymore,...
> Also, doing a sigcheck looks like the DLL itself hasn't changed in PSES from 2024.2.0 from 2024.3.2, so was this just a new detection that was a previous mis-signing?...
Very interesting topic, I think it's a perspective for the circle of trust in an environment, and of course for standard users and standard workstations, winget as managed installer is...
Thank you for your excellent and perfect answer, i will close this thread now 😊 Update: sorry i missed that you also have a question. For the portable version it...
> ProgramData would imply a more traditionally installed program, but I would much prefer not having to do that, traditional installers are annoying to maintain and MSIX makes implementing certain...