Join GitHub today
Digitally sign or hash WiX binaries #3149
Due to the highly security-sensitive nature of the environments in which WiX runs, the WiX installer MSI and binaries should be digitally signed using a code signing certificate registered to an authoritative person or entity. This is the preferred means of insuring code integrity because it can be programmatically checked by Windows. Alternatively, hashes (MD5 and SHA-1) of the binaries could be posted to a WiX mailing list by an authoritative person. Posting hashes to a mailing list is preferred over posting hashes to a web server because an attacker able to substitute a malicious installer or binaries would be unable to replace the hashes once mailed. However, to emphasize, code signing is preferred.