Are there any providers offering code signing certificates for (Red Hat Enterprise) Linux? I see a lot of buzz for Microsoft-land, but not much for Linux.
I know how to generate my own certificates and embed a public certificate into my executable. I’m specifically looking for ways to get the certificate signed by a trusted CA. The target system is RHEL 5 Server.
An alternative question: What root certificate authorities are trusted by RHEL 5 Server out of the box?
Advertisement
Answer
In all reality and practicality, most people just use self signed certs. RHEL customers trust entire repositories in addition to sums of individual packages. So yes, you could sign your executable, but beyond letting it trust itself it would do very little good on a stock RHEL system.
A list of trusted CAs can be found somewhere in /etc, I forget the exact location but it should be rather conspicuous.