SRWare.net

Welcome to the SRWare Forum
https://www.srware.net/forum/

New Iron-Version: 59.0.3100.0 Stable for Windows

https://www.srware.net/forum/viewtopic.php?t=16960

Page 4 of 4

Re: New Iron-Version: 59.0.3100.0 Stable for Windows

Posted: Fri Jul 28, 2017 8:40 pm
by Saua
Unfortunally I will go back to Slim Jet. :cry:

Re: New Iron-Version: 59.0.3100.0 Stable for Windows

Posted: Sat Aug 12, 2017 12:59 am
by SRWare
vanthatou wrote:Development of Iron 60 seems to be stagnant and this website is now full of ads. Admin, please let us know if you are still active.
Will be released today

Re: New Iron-Version: 59.0.3100.0 Stable for Windows

Posted: Sat Aug 12, 2017 1:36 pm
by reidtech
SRWare wrote:
vanthatou wrote:Development of Iron 60 seems to be stagnant and this website is now full of ads. Admin, please let us know if you are still active.
Will be released today
Now here's the big question: are you actually Stefan Ries and will the installers for Iron 60 be digitally signed by you?

Even then, since the last signed installer was version 56, signed on ‎Thursday, ‎February ‎09, ‎2017 3:27:29 PM (Certum Code Signing CA SHA2 and countersigned by Symantec Time Stamping Services CA - G2), and the email address used for the signature is on this domain (webmaster@srware.net), how can we be sure that this domain has not been taken over by malign interests?

The registrant for the domain (mostly) checks out on the registrar's (OVH) whois:
But the domains of the contact emails (f.o-w-o.info and d.o-w-o.info) do not resolve. Though they do appear to be owned and self registered by OVH SAS.

Any explanation for what has happened to Iron for the last few versions? Got a new job? Got a divorce? Death in the family?

Please sign the installer for version 60 and assure us that this domain has not been taken over by bad actors.

Using Firefox is killing me. :( :ironvsff

Re: New Iron-Version: 59.0.3100.0 Stable for Windows

Posted: Sat Aug 12, 2017 4:23 pm
by reidtech
On further examination I see that the certificate used to sign version 56 expired 2017-03-11, and that is likely why versions 57, 58 and 59 were not signed.

I see the pricing is reasonable:
http://www.certum.eu/certum/cert,offer_code_signing.xml

Presumably the 28 € OpenSource Code Signing cert applies. That is a really good price!

If the cost of a new certificate is burdensome, perhaps someone could donate the 28 € cost?

Alternatively, since I see you are using OVH for your hosting, it should not be difficult to setup Let's Encrypt for srware.net for free and then post file hashes with the posted installers for good measure...

edit: actually, I see you already have a Comodo domain validation certificate for srware.net that is good until 2018-04-25, so it is just a matter of forcing it with a redirect and/or strict transport and then cleaning up the website code to not reference any http resources to make it look tidy with a green lock icon.

https://www.srware.net/

https://www.srware.net/downloads/srware_iron64.exe

Re: New Iron-Version: 59.0.3100.0 Stable for Windows

Posted: Sat Aug 12, 2017 6:10 pm
by SRWare
reidtech wrote:
Any explanation for what has happened to Iron for the last few versions?
It is the original domain. Its an WHOIS protect to avoid spammers.
And we will bring back the signing back soon!
All times are UTC+01:00
Page 4 of 4

Powered by phpBB® Forum Software © phpBB Limited