gaborcsardi
commented
1 month ago Are you able to provide a list of all potential paths that executables could run from?
Everything is installed in c:\Rtools44 by default, so from there?
Are there any plan to sign the executables?
These installers are produced at https://cran.r-project.org/bin/windows/, we are only mirroring them here, so you'll have to ask them, I am afraid.
Hello, we need to install and update this software in an enterprise environment but it is a huge admin overhead.
We use applocker to prevent installation of unapproved software.
The first problem is the executables are unsigned, this means we have to use a rule which allows executables to only run in specified locations. This is less than ideal from a security perspective and to compound the problem there seems to be many locations where executables need run.
Whenever the user needs to install a new module, it get blacked by applocker and we need to approve new paths. Are you able to provide a list of all potential paths that executables could run from? Are there any plan to sign the executables?