Starting with version 0.6, APT contains code that does signature checking of the Release
file for all repositories. This ensures that data like packages in the archive can't be
modified by people who have no access to the Release file signing key. Starting with
version 1.1 APT requires repositories to provide recent authentication information for
unimpeded usage of the repository. Since version 1.5 changes in the information contained
in the Release file about the repository need to be confirmed before APT continues to
apply updates from this repository.
注意: apt-get(8)、aptitude(8)、synaptic(8) といった APT
ページでは単純化するためだけに、その全てを参照するのに APT を使っています。
A Release file contains beside the checksums for the files in the repository also general
information about the repository like the origin, codename or version number of the
This information is shown in various places so a repository owner should always ensure
correctness. Further more user configuration like apt_preferences(5) can depend and make
use of this information. Since version 1.5 the user must therefore explicitly confirm
changes to signal that the user is sufficiently prepared e.g. for the new major release of
the distribution shipped in the repository (as e.g. indicated by the codename).