This Bugzilla instance is a read-only archive of historic NetBeans bug reports. To report a bug in NetBeans please follow the project's instructions for reporting issues.
Created attachment 107814 [details] NetBeans installer in IE 9.0 Steps to reproduce: Download NetBeans 7.0 with Internet Explorer 9.0 in Windows 7 Default option does even allow user to run it. One have to click on 'More options' in SmartScreen Filer dialog to be able to run the NetBeans installer. See attached screenshot.
http://msdn.microsoft.com/en-us/library/ms995347.aspx The installer executable probably needs to be signed with 'Authenticode' [1] using Windows Platform SDK's tool SignTool [2]. For that we need a sign certificate in PKCS#12 format issued by a trusted cert authority (VeriSign?). When the executable is signed, Windows will stop displaying the warning dialog (or at least display NetBeans/Oracle/Sun as the Publisher). Similar installers: JDK installers: signed with a cert issued by VeriSign to Sun Microsystems JDK+NetBeans budle: not signed [1] - http://technet.microsoft.com/en-us/library/cc750035.aspx [2] - http://msdn.microsoft.com/en-us/library/8s9b9yaz%28v=vs.80%29.aspx A nice tutorial about the issue: http://www.wiscocomputing.com/articles/code-signing.htm Tools able to sign *.exe on Linux machines: http://linux.die.net/man/1/signcode http://sourceforge.net/projects/osslsigncode
See also Issue 88441. http://netbeans.org/bugzilla/show_bug.cgi?id=88441
*** Bug 88441 has been marked as a duplicate of this bug. ***
Reassining to Release Engineering as this will need to be handled as an extra post-build step.
I have prepared the signed full ide installer bits at http://bits.netbeans.org/tmp/netbeans_signed.exe . Could anybody verify that the issue is fixed there?
(In reply to comment #5) > I have prepared the signed full ide installer bits at > http://bits.netbeans.org/tmp/netbeans_signed.exe . > Could anybody verify that the issue is fixed there? Yes, the issue is fixed in this signed build.
QE, could you please verify all windows installers at http://bits.netbeans.org/netbeans/trunk/nightly/2011-05-26_13-43-21/ ?
(In reply to comment #7) > QE, could you please verify all windows installers at > http://bits.netbeans.org/netbeans/trunk/nightly/2011-05-26_13-43-21/ ? We will do so, once we will test installer (at the end of release cycle).
Changesets in the trunk: http://hg.netbeans.org/main-silver/rev/442f4e30529a http://hg.netbeans.org/main-silver/rev/1bfd76fb49b4 The fix has been ported into the release701: http://hg.netbeans.org/releases/rev/65e4e6dabe89
Created attachment 110741 [details] warning dialog when starting installer I downloaded windows exe installer (7.0.1) from the official download page and realized the exe was not signed again. Could you check if the executables are still being automatically signed in build jobs?
I accidentally reassigned it to me. I checked yesterday installer bits for daily builds, 7.0.1 and 7.0 release and none of them is signed. You can verify on Windows: 1) Download JRE installer from java.oracle.com 2) Open Properties via the contextual menu 3) You can see the Digital signature tab and correctly filled details in the Details tab 4) Now download a daily build and do the same. There's no Digital signature tab and the Details tab is empty
http://hg.netbeans.org/web-main/rev/a8549cb8bf81
Integrated into 'main-golden' Changeset: http://hg.netbeans.org/main-golden/rev/a8549cb8bf81 User: PGebauer <pgebauer@netbeans.org> Log: #197839 - NetBeans installer might harm your computer