Skip to Content.

cat-users - Re: [[cat-users]] What is the real signature of CAT

cat-users AT lists.geant.org

Subject: The mailing list for users of the eduroam Configuration Assistant Tool (CAT)

List archive


Re: [[cat-users]] What is the real signature of CAT


Chronological Thread 
    < Chronological >      < Thread >
  • From: Paul Dekkers <paul.dekkers AT surf.nl>
  • To: Dmitrii Manelis <s6dmmane AT uni-bonn.de>, cat-users AT lists.geant.org
  • Subject: Re: [[cat-users]] What is the real signature of CAT
  • Date: Fri, 13 Oct 2023 13:26:00 +0200
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=surf.nl; dmarc=pass action=none header.from=surf.nl; dkim=pass header.d=surf.nl; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=w2/dg/G6+i829bzCcIdih9n9Bklsijf1z36TIzKraus=; b=Hdx6SJSY1XH4DpIBu9hanBDtZf/Wxefs8zPkoo7WpOjMjGYpCBUbc5GCKXD4ynewtXcK20LkERgPMCUkxKDupS4kwN9QCyrnvEoM3Ov2qqUSmjs7V5nsGyrfDDRMpJXgFeM6w9hGRDyoW+ZyGc7cUS1Rl9p5r2ChwMEHgA0gPMdP5T/5iFddOXRebj9w7TgUnVgxD+zw6hbyteYpEUbOyHgGNkJf0KDdI653snt2TbiHA3PtkkrbP2WCfqV8doYJ2nJtooleGwpzfPqGH0CRqi5UuNdT4+rTlAwQW03TZ7QK6KT+RDSzxUElaAm/Q17dddG4lLKDa7jzd/Ui2l/JAg==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=areRX9S8BJjpv3CKakSzqPmLjzX48uHxZ6sHXTaPewLo3O47hXCuCvf9o46nLlFgCmiQyFtQp6WtNahaUsW1MNnUBBAhAKoSZKhvzoAXYmO6X4XN7dMw3T4RO4DA1DJxSRlvSXM0V4KntBRtR6CVgGuMpZdantt0s0ZLuV3XOSG2aAdQSlUqHoGFh4a0a0QwxWeczsWCVboOB06lvNp22X8cq0X24kXk9ilp2JRea5LtyCDwlcUdXX39L5m30Hg181f+0XVzFhbck6VJbKkDtJ+f0yoBwBng/M2NwxrPG1NOgq24N5VJY7hw4yYMs8amv+OKTBzaCdtbiq30R+UryA==
  • Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=surf.nl;
Hi,

On 13/10/2023 13:10, "Dmitrii Manelis" (via cat-users Mailing List) wrote:
Dear Mailmaster (?),

ich have a question about "eduroam CAT". In FAQ section on website stands that it is signed by
GÉANT Association, but when I check the signature in "properties", it shows a certificate from "
Sectigo Public Code Signing", which arises some suspictions. (Some sandboxes on virustotal have also found traces of suspicious activity in the file)
I suppose it would be also good to have most relevant checksums to be listed on the website.

Because the executables are signed per institution profile, we can't really make a checksum. (We could do that for the geteduroam.exe's since those are 1 executable for all, we didn't consider that yet but the idea is good.)

The executables are signed by GÉANT or SURF (given our signer redundancy) and have a root from Sectigo. So what you're finding sounds correct. You could upload the .exe to virustotal.com or something, but there should really be no alarms or suspicious activity. We are of course trying to configure a wireless or wired network.

Regards,
Paul



Archive powered by MHonArc 2.6.24.

Top of Page