Uploaded image for project: 'Bamboo Data Center'
  1. Bamboo Data Center
  2. BAM-19915

signed install packages

    XMLWordPrintable

Details

    • 0

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

    Description

      One of our tools, Carbon Black Protect, is an application whitelisting tool. It will block execution of any software that we have not already approved at NBME.
       
      I just came across a new Bamboo install package:
      atlassian-bamboo-6.2.1-windows-x64.exe
      SHA-256: 9B19A200368890AEAE1EAC469450F1E87A4A9F4291058D7064AE7CB1EF6CCB32
      MD5: 05B78212FFD6442FF6444E633AFCE91C
      SHA-1: 47FFF262EF7F70E01E5CB017AF0CAEC6D5AAE4FF 
       
      This software is not signed so we have no way to approve it and future versions by trusting Atlassian as a publisher.
       
      It would be desirable if all install packages were signed using either using certs for "Atlassian, Inc." or "Atlassian Pty Ltd" so that we can 'white list' all future installs.

      Attachments

        Activity

          People

            Unassigned Unassigned
            averdi Antonia V.
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: