[BAM-19915] signed install packages

Type: Suggestion
Resolution: Timed out
Fix Version/s: None
Component/s: Installation
Labels:
- bamboo-bugs-grooming

UIS:
0
Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

One of our tools, Carbon Black Protect, is an application whitelisting tool. It will block execution of any software that we have not already approved at NBME.

I just came across a new Bamboo install package:
atlassian-bamboo-6.2.1-windows-x64.exe
SHA-256: 9B19A200368890AEAE1EAC469450F1E87A4A9F4291058D7064AE7CB1EF6CCB32
MD5: 05B78212FFD6442FF6444E633AFCE91C
SHA-1: 47FFF262EF7F70E01E5CB017AF0CAEC6D5AAE4FF

This software is not signed so we have no way to approve it and future versions by trusting Atlassian as a publisher.

It would be desirable if all install packages were signed using either using certs for "Atlassian, Inc." or "Atlassian Pty Ltd" so that we can 'white list' all future installs.

No work has yet been logged on this issue.

Assignee:: Unassigned

Reporter:: Antonia V.

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 30/May/2018 3:45 PM

Updated:: 07/Apr/2020 2:32 PM

Resolved:: 07/Apr/2020 2:32 PM

Details

Description

Attachments

Forms

Activity

People

Dates