Do admins mind exes being copied/installed to the users Application Data folder?

executable

Solution 1:

Well, in the (quite common) case of a networked home folder, you still have all the problems associated with starting from a network share, because in fact that's what happening.

Honestly, I don't get it. There are certain ways programs are supposed to be installed and run on the Windows platform. Why don't you just follow these proven methods? Really, at great deal of the problems I face with Windows apps can be traced back to programmers who either don't know how windows programs are expected to install and behave or who think it's to complicated and take some shortcuts or something like that.

(Granted, I often deal with scientifc programs that are written by experts in their domain who don't care at all about the platform or even try to write platform independent, but still).

Solution 2:

I second SvenW's comments, the comments in the other thread and would like to add a few.

What happens if the user has a roaming profile and I'm trying to install the MSI out via GPO? Does this mean the user gets it or the machine? Whats the case with multiple users using the same machine?

What happens if the profile moves from a computer where they are supposed to run things to one they aren't like a print server in a Uni lab? Will the application follow?

How do I control versions if for example it was installed on another computer, the profile migrated to a new machine? The msi won't be there in a consistent state and when you release a new version I might not catch it or something may break?

There are good security reasons for making sure your executables and your data are completely separate, additionally in a number of environments you may not be able to expect the user has execute permission to their appdata folder.

I don't know how big your app is but do I really want a backup of it for every user when I run the backup jobs for the profiles?

Your application sounds really portable and self contained, thats great and there are work arounds to each of the above. But why rock the boat and force it somewhere it shouldn't go when it's just as easy to put it where it's expected? I can't speak for anyone else but the above cases make things fall into the "unpredictable" basket and that isn't great.

As to Google, it depends on your usage case, they are pushing to a lot of home users maybe who don't care? You sounds like your pushing to corporate IT and it can't hurt to get on the good side of the people who will be testing and deploying your app. They will spend less time thinking of ways to replace it if yours is stable, predictable and works like every other one they have.

Solution 3:

Also common in corporate Windows environments is Software Restriction Policies. This underutilized feature of modern Windows allows the administrator to allow or restrict executables from running based on the path or even based on a cryptographic signature. I routinely only allow executables to run only in the windows or program files directories. Otherwise users could download to AppData or even their user directory and basically be running anything. What's the point of forcing users to be limited users if they can run any EXE they want to? I make exceptions for GoToMeeting, but not as of yet Chrome.

Related

The "Italian sounding" issue
When is it okay to omit a determiner? (as in "Everything for baby")
What do you call a person who incessantly thinks only they are good enough to do something?
Acid vs. Acidic
Better way of saying "those who are curious"?
Modern use of "bourgeoisie"
How to use possessive apostrophe with words in quotation marks?
etymology of eavesdropping [closed]
What's the difference in meaning between "variation" and "alteration"?
Pit as a past tense verb
Is "When I lived in Berlin, I had seen the movie three times" grammatical?
Using the word 'former' in this context?