Authenticode signatures of TurboActivate.dat with hash?Answered
Should I do Authenticode signatures of TurboActivate.dat with some hash like SHA256?
Probably I should do with: for win(systa.exe, TurboActivate.dll), mac(systa and libTurboActivate.dylib).
Take the hash of files at runtime, and compare it against the hardcoded hash.
But I am not sure for the TurboActivate.dat, I mean does this file change over time?
Answer
The Windows files are already signed.
The macOS files used to be signed. Then Apple changed everything and they’re no longer signed. We'll start signing with their new, overly complicated method, in the next release or 2.
Non-executable files (like the dat) cannot be signed.