cat-users AT lists.geant.org
Subject: The mailing list for users of the eduroam Configuration Assistant Tool (CAT)
List archive
- From: Paul Dekkers <paul.dekkers AT surf.nl>
- To: Dmitrii Manelis <s6dmmane AT uni-bonn.de>, cat-users AT lists.geant.org
- Subject: Re: [[cat-users]] What is the real signature of CAT
- Date: Fri, 13 Oct 2023 13:26:00 +0200
- Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=surf.nl; dmarc=pass action=none header.from=surf.nl; dkim=pass header.d=surf.nl; arc=none
- Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=w2/dg/G6+i829bzCcIdih9n9Bklsijf1z36TIzKraus=; b=Hdx6SJSY1XH4DpIBu9hanBDtZf/Wxefs8zPkoo7WpOjMjGYpCBUbc5GCKXD4ynewtXcK20LkERgPMCUkxKDupS4kwN9QCyrnvEoM3Ov2qqUSmjs7V5nsGyrfDDRMpJXgFeM6w9hGRDyoW+ZyGc7cUS1Rl9p5r2ChwMEHgA0gPMdP5T/5iFddOXRebj9w7TgUnVgxD+zw6hbyteYpEUbOyHgGNkJf0KDdI653snt2TbiHA3PtkkrbP2WCfqV8doYJ2nJtooleGwpzfPqGH0CRqi5UuNdT4+rTlAwQW03TZ7QK6KT+RDSzxUElaAm/Q17dddG4lLKDa7jzd/Ui2l/JAg==
- Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=areRX9S8BJjpv3CKakSzqPmLjzX48uHxZ6sHXTaPewLo3O47hXCuCvf9o46nLlFgCmiQyFtQp6WtNahaUsW1MNnUBBAhAKoSZKhvzoAXYmO6X4XN7dMw3T4RO4DA1DJxSRlvSXM0V4KntBRtR6CVgGuMpZdantt0s0ZLuV3XOSG2aAdQSlUqHoGFh4a0a0QwxWeczsWCVboOB06lvNp22X8cq0X24kXk9ilp2JRea5LtyCDwlcUdXX39L5m30Hg181f+0XVzFhbck6VJbKkDtJ+f0yoBwBng/M2NwxrPG1NOgq24N5VJY7hw4yYMs8amv+OKTBzaCdtbiq30R+UryA==
- Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=surf.nl;
Hi,
On 13/10/2023 13:10, "Dmitrii Manelis" (via cat-users Mailing List) wrote:
Dear Mailmaster (?),
ich have a question about "eduroam CAT". In FAQ section on website stands that it is signed by
GÉANT Association, but when I check the signature in "properties", it shows a certificate from "
Sectigo Public Code Signing", which arises some suspictions. (Some sandboxes on virustotal have also found traces of suspicious activity in the file)
I suppose it would be also good to have most relevant checksums to be listed on the website.
Because the executables are signed per institution profile, we can't really make a checksum. (We could do that for the geteduroam.exe's since those are 1 executable for all, we didn't consider that yet but the idea is good.)
The executables are signed by GÉANT or SURF (given our signer redundancy) and have a root from Sectigo. So what you're finding sounds correct. You could upload the .exe to virustotal.com or something, but there should really be no alarms or suspicious activity. We are of course trying to configure a wireless or wired network.
Regards,
Paul
- [[cat-users]] What is the real signature of CAT, Dmitrii Manelis, 10/13/2023
- Re: [[cat-users]] What is the real signature of CAT, Paul Dekkers, 10/13/2023
Archive powered by MHonArc 2.6.24.