Does this prevent updates from other sources from being installed correctly? If so it'd be nice to at least get that fixed up.
It should be noted that the remote sources are in complete control of your computer -- they can provide packages that run scripts as root and they can replace any package on the system. Limiting the scope of what package repositories can do on your computer with AppArmor or SELinux is a seriously daunting challenge. In the same way that you need to be careful who gets sudo access on your computers you also need to be careful to whom you give apt sources access.
Does this prevent updates from other sources from being installed correctly? If so it'd be nice to at least get that fixed up.
It should be noted that the remote sources are in complete control of your computer -- they can provide packages that run scripts as root and they can replace any package on the system. Limiting the scope of what package repositories can do on your computer with AppArmor or SELinux is a seriously daunting challenge. In the same way that you need to be careful who gets sudo access on your computers you also need to be careful to whom you give apt sources access.
Thanks