I've been following along with the discussions on the FD list and looks like along with the source that leaked... the tools that make programs "trusted" were included with it...

NOW EVERY EXECUTABLE IS TRUSTED AND DIGITALY SIGNED

found this interesting... \win2k\private\inet\mshtml\build\scripts\tools\x86

iexpress.exe
signcode.exe
makecert.exe ( DigSig.dll )

( in fast food voice ) and who would you like your package to be certified from today sir? \win2k\private\ispu\pkitrust\initpki\certs\

looks like the viri / trojan kiddies will have some fun with this. yikes to PE format executables.

alas... i could be wrong,

m.wood
Now, I thought that the source being released was going to be bad...

Looks like these files were already available?

Certificate Creation Tool (Makecert.exe)

http://msdn.microsoft.com/library/de...akecertexe.asp

http://msdn.microsoft.com/library/de...eworkTools.asp

signcode.exe

http://longhorn.msdn.microsoft.com/l...gncodeexe.aspx