I'd say it's probably the synaptic one for Martin. We should change its directory to be _apt owned too, though it's not really clear to me which directories that are.
This should all be fixed in a hopefully near future with apt 1.6 or 1.7 opening these files as root and passing them down to the unprivileged processes via a socket. That's not yet implemented, though I do have mvo's branch from 2013 or so as a base.
I'd say it's probably the synaptic one for Martin. We should change its directory to be _apt owned too, though it's not really clear to me which directories that are.
This should all be fixed in a hopefully near future with apt 1.6 or 1.7 opening these files as root and passing them down to the unprivileged processes via a socket. That's not yet implemented, though I do have mvo's branch from 2013 or so as a base.