View Single Post
Old 06-30-2009, 11:06 AM
kinook kinook is online now
Join Date: 03-06-2001
Location: Colorado
Posts: 5,758
VBP itself doesn't connect to anything external. VBP does verify its digital signature at times (for security reasons). I suspect what's happening is that calling the Windows API to verify a signature (WinVerifyTrust) causes Windows to retrieve a certificate revocation list (CRL) to determine if the certificate has been revoked. setreg.exe can be used to prevent the external lookup:

There also appears to be a flag available to prevent the revocation list lookup when verifying a signature, which we'll use in the next release.
Reply With Quote