or Adobe Systems Incorporated on older versions that pre-date the company's recent name change. Depending on the version you have installed, the hash values might change, but it should be signed by Adobe Inc. Here's what a legit copy looks like on my machine. On Mac, you can verify the code signing certificate on that file from the terminal.
Ĭode signing provides an authoritative, cryptographically secure way to determine who created a particular binary (a.k.a non-repudiation), and validating a code signature inherently confirms that the copy you have is a bit-for-bit match for the one that was signed and shipped by the author. There's a super straight-forward, authoritative way to answer the 'is this file legit?' question. We really want to drive the population down so that people are discovering and resolving issues now, instead of over the holidays, when nobody will be around to help.Īnyone can name a file anything, so filenames are absolutely useless in terms of determining legitimacy or safety. There is a helper utility that handles automatic updates, and now, as we reach the end of life for Flash Player, is encouraging you to uninstall before the last possible day.
Folks, let's not guess and make spooky assertions about security questions.