Thank you, David. Yes, I could also see the certificate came from Comodo and that there was no problem with it. I'm satisfied that the file is authentic. Thanks also for explaining about why the file does not appear in the downloads section.

Hi

I downloaded PM 4.72 from http://www.pmail.com/downloads_s3_t.htm. Using I.E.11 on Windows 7 it reports that "The signature of w32-472.exe is corrupt or invalid" - I tried a couple of times with the same result. I don't see any warning when using Chrome. Also, I may be behind the times here, but why is this version not listed in the 'Downloads' section that appears next to 'Forums' as shown near the top of the page? I've been seeing people using 4.72 on the forum for a while, but thought it was a private beta - only found it through a web search.

I'm reluctant to upgrade if there may be an issue as all our staff use Pegasus Mail (presently on 4.70).

Thanks

Pegasus Mail does not have a Publishers Certificate. It costs a lot of money, and is really only intended for large companies.  It would be nice if the executable was signed by PGP and/or there was an MD5 checksum that went into the distribution kit. Either of these tools could detect any alteration to the originator's code.

Martin

Thanks for the explanation, Martin.

Will future versions no longer be advertised in the Downloads section?

[quote user="irelam"]Pegasus Mail does not have a Publishers Certificate.[/quote]

Sorry Martin, but this isn't correct, it has a valid certification which can be verified by simply right clicking the setup executable, go to the Digital signatures tab and double click Details (translated from German, see below):

[quote user="idw"]

[quote user="irelam"]Pegasus Mail does not have a Publishers Certificate.[/quote]

Sorry Martin, but this isn't correct, it has a valid certification which can be verified by simply right clicking the setup executable, go to the Digital signatures tab and double click Details (translated from German, see below):

[/quote]

Thanks. I can see that the status of the certificate is 'OK'. I wonder why I.E.11 on my Win 7 machine considered it to be invalid.

[quote user="Greenman"]Thanks. I can see that the status of the certificate is 'OK'. I wonder why I.E.11 on my Win 7 machine considered it to be invalid.[/quote]

No idea, but I can confirm your observation on my Win 7 machine with IE 11. Maybe it's because the download server isn't the the pmail server or SHA-1 is considered insecure.

[quote user="idw"]

No idea, but I can confirm your observation on my Win 7 machine with IE 11. Maybe it's because the download server isn't the the pmail server or SHA-1 is considered insecure.

[/quote]

Thanks for the confirmation. I'll push the update through during the next couple of weeks.

Well, I can tell you that I use a Comodo signing certificate, and have done so for a number of years now. I've never had any problems with it in the past, and all the systems I have available to me here tell me that w32-472.exe is signed with a valid signature.

I can't think of any reason why IE11 might have trouble with it, except that the certificate is fairly near to expiring (it expires in October). Michael's hypothesis that the certificate is regarded as "weak" because it uses SHA-1 as its HMAC is possible - when I renew the certificate, the replacement will use SHA-3, which shouldn't give any trouble. It may be that there is some attribute missing from the certificate that IE expects to see, but I can't see why it would have that problem when Windows 7 and 10 don't seem to have any issue in their properties dialogs.

As for why the current version isn't available on the Community... Well, I have some problems uploading to the Community for some reason - I've never been able to work it out.

Sorry I can't give you anything definitive about this - as far as I am aware, there is no problem with my signing regime. Since I'm going to have to renew the certificate soon, I'd suggest we leave it for now and revisit the issue if IE still has problems with it after the renewal.

Cheers!

-- David --