My org without a pki wants to code sign. This topic contains 1 reply, has 2 voices, and was last updated by Don Jones 1 month, 1 week ago. Author Posts May 16, 2017 at 7:24 pm #70811 Dan PotterParticipant If they buy a cert from Entrust and basically everyone trusts entrust, does that mean malicious code signed with an entrust cert would run on the system configured to run 'allsigned' scripts? Dan May 17, 2017 at 2:21 am #70846 Don JonesKeymaster Yup. And it means you'd be able to track them down because a certificate is a digital identification card. Author Posts You must be logged in to reply to this topic.