/ Java Zone
Over a million developers have joined DZone.
{{announcement.body}}
{{announcement.title}}

Don't Bother Signing Your Code...

DZone's Guide to

Don't Bother Signing Your Code...

by
·
May. 17, 10 · Java Zone ·
Free Resource

Comment (0)

Save
Tweet
{{ articles[0].views | formatCount}} Views

Download Microservices for Java Developers: A hands-on introduction to frameworks and containers. Brought to you in partnership with Red Hat.

Let's recap: my commercially distributed plugin is currently unsigned. I'm debating the question whether I should invest the time and money and sign the plugin. I published a poll last week on the subject and the answers are quite definitive. 

Here are the results:

  • 87% voted that they simply don't care.
  • 13% voted that they will check the website before proceeding.
  • Not a single vote claiming that he/she will never install an unsigned plugin. 
  • 79 people voted, out of 727 reads for the article. That's almost 11%. For comparison, the poll on XML handling got about 13% participation.  That's almost 20% more. As I see it: people that don't care are less inclined to vote. People who oppose will likely vote, to have their strong opinion heard.
My conclusion: don't bother because people don't care. 

If you still going to sign your code, go with Peter's tip and buy the certificate from Tucows. At $75, they seem to be the cheapest around and you get exactly the same certificate (they buy them in bulk...).

I still think there's a point in keeping the unsigned warning when installing such a plugin. Some people will check the origin to make sure it is bona fide. But then, again, I've never heard of a malicious Eclipse plugin. I guess there's always a first time...

From http://blog.zvikico.com/2010/05/dont-bother-signing-your-code.html

Download Building Reactive Microservices in Java: Asynchronous and Event-Based Application Design. Brought to you in partnership with Red Hat

Like This Article? Read More From DZone

Proposed Jakarta EE Design Principles
Advanced Research Initiatives: Focus on the Future
How to Configure NGINX High Availability Cluster Using Pacemaker on Ubuntu 16.04

Free DZone Refcard

Getting Started With Kotlin
DOWNLOAD
Topics:

Comment (0)

Save
Tweet
{{ articles[0].views | formatCount}} Views

Opinions expressed by DZone contributors are their own.

Java Partner Resources

Deep insight into your code with IntelliJ IDEA.
Reactive Microservices Architecture: Design Principles for Distributed Systems
Learn more about Kotlin
A Reference Guide to Stream Processing
jQuery UI and Auto-Complete Address Entry
Microservices for Java Developers: A Hands-On Introduction to Frameworks & Containers
Modern Java EE Design Patterns: Building Scalable Architecture for Sustainable Enterprise Development
Migrating to Microservice Databases
Developing Reactive Microservices: Enterprise Implementation in Java
Designing Reactive Systems: The Role Of Actors In Distributed Architecture
Build vs Buy a Data Quality Solution: Which is Best for You?
Building Real-Time Data Pipelines with a 3rd Generation Stream Processing Engine

Java Partner Resources

Deep insight into your code with IntelliJ IDEA.
Reactive Microservices Architecture: Design Principles for Distributed Systems
Learn more about Kotlin
A Reference Guide to Stream Processing

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.linkDescription }}

{{ parent.urlSource.name }}
by {{ parent.authors[0].realName || parent.author}}
· {{ parent.articleDate | date:'MMM. dd, yyyy' }} {{ parent.linkDate | date:'MMM. dd, yyyy' }}
· {{ parent.portal.name }} Zone