"Felix Garcia" <[email protected]> wrote in message
news:[email protected]...
> Yesterday I was reading the book "Symbian OS Platform Security" de Wiley,
> and in the chapter 2 it says that an application can be installed on a
> mobile phone witouth have been signed... I have tried it, installing a sis
> without any sign in a Nokia E60, being disabled previously in appmanager
> all security and it doesn't work (it prompts certificate error, contact
> supplier). Has an application to be signed to be installed?
On S60, apps *must* be signed in some way: Symbian Signed, self-signed,
signed with a devcert.
--
Sander van der Wal
www.mBrainSoftware.com
Sander van der Wal wrote:
> "Felix Garcia" <[email protected]> wrote in message
> news:[email protected]...[color=green]
>> Yesterday I was reading the book "Symbian OS Platform Security" de Wiley,
>> and in the chapter 2 it says that an application can be installed on a
>> mobile phone witouth have been signed... I have tried it, installing a sis
>> without any sign in a Nokia E60, being disabled previously in appmanager
>> all security and it doesn't work (it prompts certificate error, contact
>> supplier). Has an application to be signed to be installed?
>
> On S60, apps *must* be signed in some way: Symbian Signed, self-signed,
> signed with a devcert.
>
>[/color]
And how can I self-sign an application to be installed on any mobile phone?
Felix Garcia napisał(a):
> Sander van der Wal wrote:[color=green]
>> "Felix Garcia" <[email protected]> wrote in message
>> news:[email protected]...[color=darkred]
>>> Yesterday I was reading the book "Symbian OS Platform Security" de
>>> Wiley, and in the chapter 2 it says that an application can be
>>> installed on a mobile phone witouth have been signed... I have tried
>>> it, installing a sis without any sign in a Nokia E60, being disabled
>>> previously in appmanager all security and it doesn't work (it prompts
>>> certificate error, contact supplier). Has an application to be signed
>>> to be installed?
>>
>> On S60, apps *must* be signed in some way: Symbian Signed,
>> self-signed, signed with a devcert.
>>
>>[/color]
>
> And how can I self-sign an application to be installed on any mobile phone?[/color]
Self-signing means that sis is signed by you using self generated
certificate(the opposite to symbian-signed where symbian certificate is
used). Easiest way is to invoke createsis without parameters like:
createsis create myapp.pkg
then you will be prompted to enter password for key file and generate
some random data by moving mouse over console and pressing keys, this
data will be used to create your certificate and key, next you can use
this cert+key pair to sign any other sis(after that process you have two
new files: certificate - cert-gen.cer and key - key-gen.key)
Again easiest way to create self-signed sis (from pkg) using existing
cert and key file.
createsis create -cert cert_file -key key_file -pass your_pass myapp.pkg
All process is correct, but when I am installing it, a messae like that
apper : "Unable to install a protected application of an untrusted supplier"
Sebastian Wieczorek wrote:
> Felix Garcia napisał(a):[color=green]
>> Sander van der Wal wrote:[color=darkred]
>>> "Felix Garcia" <[email protected]> wrote in message
>>> news:[email protected]...
>>>> Yesterday I was reading the book "Symbian OS Platform Security" de
>>>> Wiley, and in the chapter 2 it says that an application can be
>>>> installed on a mobile phone witouth have been signed... I have tried
>>>> it, installing a sis without any sign in a Nokia E60, being disabled
>>>> previously in appmanager all security and it doesn't work (it
>>>> prompts certificate error, contact supplier). Has an application to
>>>> be signed to be installed?
>>>
>>> On S60, apps *must* be signed in some way: Symbian Signed,
>>> self-signed, signed with a devcert.
>>>
>>>
>>
>> And how can I self-sign an application to be installed on any mobile
>> phone?[/color]
>
> Self-signing means that sis is signed by you using self generated
> certificate(the opposite to symbian-signed where symbian certificate is
> used). Easiest way is to invoke createsis without parameters like:
>
> createsis create myapp.pkg
>
> then you will be prompted to enter password for key file and generate
> some random data by moving mouse over console and pressing keys, this
> data will be used to create your certificate and key, next you can use
> this cert+key pair to sign any other sis(after that process you have two
> new files: certificate - cert-gen.cer and key - key-gen.key)
>
> Again easiest way to create self-signed sis (from pkg) using existing
> cert and key file.
>
> createsis create -cert cert_file -key key_file -pass your_pass myapp.pkg[/color]
"Felix Garcia" <[email protected]> wrote in message
news:[email protected]...
> All process is correct, but when I am installing it, a messae like that
> apper : "Unable to install a protected application of an untrusted
> supplier"
http://www.whythefuckwontmysisfileinstall.com/
--
Sander van der Wal
www.mBrainSoftware.com
> Sebastian Wieczorek wrote:[color=green]
>> Felix Garcia napisa�,(a):[color=darkred]
>>> Sander van der Wal wrote:
>>>> "Felix Garcia" <[email protected]> wrote in message
>>>> news:[email protected]...
>>>>> Yesterday I was reading the book "Symbian OS Platform Security" de
>>>>> Wiley, and in the chapter 2 it says that an application can be
>>>>> installed on a mobile phone witouth have been signed... I have tried
>>>>> it, installing a sis without any sign in a Nokia E60, being disabled
>>>>> previously in appmanager all security and it doesn't work (it prompts
>>>>> certificate error, contact supplier). Has an application to be signed
>>>>> to be installed?
>>>>
>>>> On S60, apps *must* be signed in some way: Symbian Signed, self-signed,
>>>> signed with a devcert.
>>>>
>>>>
>>>
>>> And how can I self-sign an application to be installed on any mobile
>>> phone?
>>
>> Self-signing means that sis is signed by you using self generated
>> certificate(the opposite to symbian-signed where symbian certificate is
>> used). Easiest way is to invoke createsis without parameters like:
>>
>> createsis create myapp.pkg
>>
>> then you will be prompted to enter password for key file and generate
>> some random data by moving mouse over console and pressing keys, this
>> data will be used to create your certificate and key, next you can use
>> this cert+key pair to sign any other sis(after that process you have two
>> new files: certificate - cert-gen.cer and key - key-gen.key)
>>
>> Again easiest way to create self-signed sis (from pkg) using existing
>> cert and key file.
>>
>> createsis create -cert cert_file -key key_file -pass your_pass myapp.pkg[/color][/color]
I have achieved it!! I have only one question: Why my application uid
must be out of the range 0x20000000 - 0x2FFFFFFF? I know that this range
is for signed applications, but when you request a uid to symbiansigned
they give you one in that range... So I have put that uid 0x8000962F,
and the application has been installed correctly. My question is that if
any other could use that UID...?
Sander van der Wal wrote:
> "Felix Garcia" <[email protected]> wrote in message
> news:[email protected]...[color=green]
>> All process is correct, but when I am installing it, a messae like that
>> apper : "Unable to install a protected application of an untrusted
>> supplier"
>
> http://www.whythefuckwontmysisfileinstall.com/
>
>[/color]
"Felix Garcia" <[email protected]> wrote in message
news:kNmS%[email protected]...
>I have achieved it!! I have only one question: Why my application uid must
>be out of the range 0x20000000 - 0x2FFFFFFF? I know that this range is for
>signed applications, but when you request a uid to symbiansigned they give
>you one in that range... So I have put that uid 0x8000962F, and the
>application has been installed correctly. My question is that if any other
>could use that UID...?
Symbian Signed doesn't give out a single UID to multiple developers. You
cannot just pick a UID.
--
Sander van der Wal
www.mBrainSoftware.com
> Sander van der Wal wrote:[color=green]
>> "Felix Garcia" <[email protected]> wrote in message
>> news:[email protected]...[color=darkred]
>>> All process is correct, but when I am installing it, a messae like that
>>> apper : "Unable to install a protected application of an untrusted
>>> supplier"
>>
>> http://www.whythefuckwontmysisfileinstall.com/
>>[/color][/color]
Yes, but symbian always gives a uid in the range 0x20000000 -
0x2FFFFFFF, doesn't it? And if I use a uid in that range, the
application installer prompt a message like "Unable to install an
application of an protected range"....
Sander van der Wal wrote:
> "Felix Garcia" <[email protected]> wrote in message
> news:kNmS%[email protected]...[color=green]
>> I have achieved it!! I have only one question: Why my application uid must
>> be out of the range 0x20000000 - 0x2FFFFFFF? I know that this range is for
>> signed applications, but when you request a uid to symbiansigned they give
>> you one in that range... So I have put that uid 0x8000962F, and the
>> application has been installed correctly. My question is that if any other
>> could use that UID...?
>
> Symbian Signed doesn't give out a single UID to multiple developers. You
> cannot just pick a UID.
>
>[/color]
"Felix Garcia" <[email protected]> wrote in message
news:[email protected]...
> Yes, but symbian always gives a uid in the range 0x20000000 - 0x2FFFFFFF,
> doesn't it? And if I use a uid in that range, the application installer
> prompt a message like "Unable to install an application of an protected
> range"....
You can also request unprotected UID's. Or, if you have old pre 9.1 UID's
you can reuse them by putting a F in front of it. This is in the docs.
--
Sander van der Wal
www.mBrainSoftware.com
> Sander van der Wal wrote:[color=green]
>> "Felix Garcia" <[email protected]> wrote in message
>> news:kNmS%[email protected]...[color=darkred]
>>> I have achieved it!! I have only one question: Why my application uid
>>> must be out of the range 0x20000000 - 0x2FFFFFFF? I know that this range
>>> is for signed applications, but when you request a uid to symbiansigned
>>> they give you one in that range... So I have put that uid 0x8000962F,
>>> and the application has been installed correctly. My question is that if
>>> any other could use that UID...?
>>
>> Symbian Signed doesn't give out a single UID to multiple developers. You
>> cannot just pick a UID.
>>[/color][/color]
Thank you very much!
Sander van der Wal wrote:
> "Felix Garcia" <[email protected]> wrote in message
> news:[email protected]...[color=green]
>> Yes, but symbian always gives a uid in the range 0x20000000 - 0x2FFFFFFF,
>> doesn't it? And if I use a uid in that range, the application installer
>> prompt a message like "Unable to install an application of an protected
>> range"....
>
> You can also request unprotected UID's. Or, if you have old pre 9.1 UID's
> you can reuse them by putting a F in front of it. This is in the docs.
>
>[/color]