dpkg-offline Local repository is lower-priority than remotes in sources.list

A test system with 12.04.4 server was installed on a Virtualbox VM, choosing only openssh server in the task selection. Once the install is completed, a dpkg-offline-produced tarball of checkbox-certification-server is uploaded to the server, then the server is immediately taken offline (cable disconnected). Then the usual procedure to install the tarball is followed.

add-ofline-repository -u results in a bunch of W: Failed to fetch http://us.archive.ubuntu.com/ubuntu/dists/precise/Release.gpg Temporary failure resolving 'us.archive.ubuntu.com' for obvious reasons. This should be OK as the local repo should provide required packages.

When apt-get installing checkbox -certification-server, however, one instance reported about 1700 failures to download packages:

Failed to fetch http://us.archive.ubuntu.com/ubuntu/pool/main/n/nmap/nmap_5.21-1.1ubuntu1_amd64.deb Temporary failure resolving 'us.archive.ubuntu.com'
Failed to fetch http://us.archive.ubuntu.com/ubuntu/pool/universe/p/pybootchartgui/pybootchartgui_0+r141-0ubuntu3_amd64.deb Temporary failure resolving 'us.archive.ubuntu.com'
E: Unable to fetch some archives, maybe run apt-get update or try with --fix-missing?

Interestingly, most of these packages are provided in the tarball.

One other instance also reported these failures to download, *but* was able to install checkbox-cert-server (and all required packages were indeed installed, from the local repository clearly since there's no remote file).

apt-cache policy reports the remote repo has priority:

$ apt-cache policy stress
stress:
  Installed: 1.0.1-1build1
  Candidate: 1.0.1-1build1
  Version table:
 *** 1.0.1-1build1 0
        500 http://us.archive.ubuntu.com/ubuntu/ precise/universe amd64 Packages
        500 file:/var/local-apt-repositories/apt-repo-ubuntu-12.04.4-server-amd64.tar.gz-20140207-checkbox-certification-server_0.18ppabzr589201401280223ubuntu12.04.1_all/ ./ Packages
        100 /var/lib/dpkg/status

Some research indicates it's not possible for a repository placed in a different apt.list.d file to have higher priority if it provides the *same* package and version as one appearing before it:

http://askubuntu.com/questions/135339/assign-highest-priority-to-my-local-repository

Thus there's no clever way to bump our priority to make the local package install prioritarily.

Two options are left:
1- Instead of using an apt.list.d file, add our dpkg lines directly at the *top* of /etc/apt/sources.list.
2- the apt-add-repository script should comment out all repositories in /etc/apt/sources.list (or maybe we can detect and comment out only *remote* repositories).

Option 2 seems simpler, since it will use just sed to comment out lines. Option 1 would involve more complicated parsing of sources.list, which further complicates our uninstall process (which currently just deletes a file).

In the meanwhile, the suggested workaround is to manually comment all entries in sources.list, before installing the tarball. For the dpkg_offline use case this should be OK, since the system is most likely offline.

Still, for use on systems with some sort of connectivity, we should allow control over which sources.list entries are munged.