On January 26, 2016 4:19:38 AM EST, Paul Hill paulroberthill@gmail.com wrote:
On 25 January 2016 at 22:48, Tracy Pearson tracy@powerchurch.com wrote:
mbsoftwaresolutions@mbsoftwaresolutions.com wrote on 2016-01-25:
Comodo should really stop selling the SHA-1 and SHA-2 if they're problematic in today's computing world.
Mike,
The SHA-2 is the current standard. Windows XP and Vista probably won't be able to use the SHA-2 to
verify the
certificate. I started a new thread that has a link which shows how to dual sign
with
both SHA-1 and SHA-2 (which is also known as SHA-256). This will help
with
verifying on multiple OS's and still only ship 1 EXE.
Thanks Tracy, I was not aware of that.
There seems to be a lot of Comodo resellers out there. Does it matter which one I use? Prices seem to vary quite a bit!
Paul,
I would say, find the best price selling the Comodo code signing certificate and use K Software since they have a price beat guarantee.
Comodo is giving the SHA-1 certificate with the purchase of the SHA-2. I'm sure buying through any reseller will be the same. Having the SHA-1 currently, to get our SHA-2 we just need to go through the reseller. Comodo still sends us the certificate direct.
Tracy