© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
In bug 125103, Savvas Radevic <email address hidden> wrote:
> Martin, unfortunately users are always suggested to uncheck any third-party repositories before upgrading to a new release. Anything that doesn't belong to the original distribution can and probably will create problems.
> But I agree that it is an issue that must be solved somehow - perhaps explaining that the users should remove/disable any third-party software repositories?
I think it would be reasonable for the GUI to say: "you can't upgrade with these repositories. do you want me to disable them, or cancel?"
> My opinion is that unsigned packages (or unsigned packages list)
> shouldn't be allowed to be installed, as it is a common security risk
> that I believe none of us wishes to take.
I think the current Ubuntu tradeoff of making them allowed but discouraged is reasonable; you can hardly 'disallow' actions in an open system. But this bug has a much smaller scope: the tool does not implement its current design intention, and leaves the user stuck.
--
Martin <http://