Managing deployment in enterprise environment

[mrkeeny]

Hello, we need to install and update this software in an enterprise environment but it is a huge admin overhead.

We use applocker to prevent installation of unapproved software.

The first problem is the executables are unsigned, this means we have to use a rule which allows executables to only run in specified locations. This is less than ideal from a security perspective and to compound the problem there seems to be many locations where executables need run.

Whenever the user needs to install a new module, it get blacked by applocker and we need to approve new paths.
Are you able to provide a list of all potential paths that executables could run from? Are there any plan to sign the executables?

[gaborcsardi]

Are you able to provide a list of all potential paths that executables could run from?

Everything is installed in c:\Rtools44 by default, so from there?

Are there any plan to sign the executables?

These installers are produced at https://cran.r-project.org/bin/windows/, we are only mirroring them here, so you'll have to ask them, I am afraid.