自解压自检可执行文件 [英] Self-extracting self-checking executable

问题描述

我正在分发我控制其内容的Authenticode签名的自解压可执行文件.

I am distributing an authenticode signed self-extracting executable whose content I control.

它包含大量基于MSI的安装程序，它们可控制分布式系统的热插拔，因此它本身不容易成为MSI.

It contains a mushroom of MSI-based installers that controls a hot swap of a distributed system, so it cannot easily be an MSI itself.

如果可执行文件只是检查了自己的authenticode ，并且如果未签名就拒绝自解压，那将是一件很高兴的事情.我确实意识到这并不能提供真正的完整性保证，但会强化这样的信息，即内容绝不是可定制的，并且可能使某些正式的认证更易于处理.

It would be nice to have if the executable just checked its own authenticode and refused to self-extract if not signed. I do realize that this provides no real integrity guarantee, but it would reinforce the message that the content is in no way customizable and perhaps make some formal certifications easier to handle.

一种可能的策略可能基于

One possible strategy might be based on with this still unanswered question. Any other ideas?

推荐答案

通常情况下这是不可能的.如果有人篡改了您的二进制文件，也许他们还会删除您的自检文件.

This is not possible in the general case. If someone has tampered with your binary, perhaps they'll also remove your self-check.

如果可以构建一个完全防篡改的可执行文件，那么任何人都不可能盗版软件.

If it was possible to build a completely tamper-proof executable, then it would be impossible for anyone to pirate software.

通过创建自解压的可执行文件，然后对其应用商业复制保护程序包，可以最接近地实现您的要求.

What you are asking for can most closely be achieved by creating an self-extracting executable and then applying a commercial copy-protection package to it.

为此，请使用您喜欢的搜索引擎搜索可执行的复制保护".

To do so, use your favourite search engine to search for "executable copy protection".

这篇关于自解压自检可执行文件的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！