---

APT 1.3 Debian Package Manager to Forbid Insecure Repositories by Default

Things are looking good for the APT 1.3 command-line package manager, and it appears that caching of file hashes has been re-implemented in the apt-ftparchive command, insecure and weak allow-options have been added to sources.list, and APT now makes sure that the file size of .deb packages is included in the hashes list. Another interesting change that landed for APT 1.3 is the ability to completely forbid insecure repositories by default, except in apt-get.