Hi,
One of my colleague is very keen on signing assemblies. He literally tries to sign anything, even when we use assemblies from Microsoft that are not signed he will take the source code , sign it and then ask other developers to use his copy instead.
I can understand the basic idea behind signing an assembly: to ensure a particular assembly is not compromised by some dodgy hacker. So if we are a software development company, we should sign our assembly before releasing some .NET library to our customers.
However, we primarily develop web applications for our own use here and I just can't see the point of signing every single assembly we use.
Am I missing something here?