I understand that signing the GpgOL binary directly with Authenticode
will have the benefit, that it can be rolled out easiler to a group of users.
by default we use the Group Policy object to block all add-in for outlook
and we also use gpo's and a white list to allow all know but certified add-in like:
"To trust an add-in for all users of a machine, it must be signed with a Trusted
Publisher’s Certificate (See Authenticode Certificates in Granting Trust to Office
Solutions and How to: Add a Trusted Publisher to a Client Computer for ClickOnce
Applications for more information)"
Let us find out how easy this is and how much we gain first.
@Andre, what do you think?