You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 

168 lines
7.2 KiB

  1. apt (1.6~alpha1) UNRELEASED; urgency=medium
  2. All methods provided by apt except for cdrom, gpgv, and rsh now
  3. use seccomp-BPF sandboxing to restrict the list of allowed system
  4. calls, and trap all others with a SIGSYS signal. Three options
  5. can be used to configure this further:
  6. APT::Sandbox::Seccomp is a boolean to turn it on/off
  7. APT::Sandbox::Seccomp::Trap is a list of names of more syscalls to trap
  8. APT::Sandbox::Seccomp::Allow is a list of names of more syscalls to allow
  9. -- Julian Andres Klode <jak@debian.org> Sun, 22 Oct 2017 22:29:58 +0200
  10. apt (1.5~beta1) unstable; urgency=medium
  11. [ New HTTPS method ]
  12. The default http method now supports HTTPS itself, including encrypted proxies
  13. and connecting to HTTPS sites via HTTPS proxies; and the apt-transport-https
  14. package only provides a "curl+https" method now as a fallback, but will be
  15. removed shortly. If TLS support is unwanted, it can be disabled overall by
  16. setting the option Acquire::AllowTLS to "false".
  17. As for backwards compatibility, the options IssuerCert and SslForceVersion
  18. are not supported anymore, and any specified certificate files must in the
  19. PEM format (curl might have allowed DER files as well).
  20. [ Changes to unauthenticated repositories ]
  21. The security exception for apt-get to only raise warnings if it encounters
  22. unauthenticated repositories in the "update" command is gone now, so that it
  23. will raise errors just like apt and all other apt-based front-ends do since
  24. at least apt version 1.3.
  25. It is possible (but STRONGLY ADVISED AGAINST) to revert to the previous
  26. behaviour of apt-get by setting the option
  27. Binary::apt-get::Acquire::AllowInsecureRepositories "true";
  28. See apt-secure(8) manpage for configuration details.
  29. [ Release Info Changes ]
  30. If values like Origin, Label, and Codename change in a Release file,
  31. update fails, or asks a user (if interactive). Various
  32. --allow-releaseinfo-change are provided for non-interactive use.
  33. -- Julian Andres Klode <jak@debian.org> Mon, 03 Jul 2017 15:09:23 +0200
  34. apt (1.4.2) unstable; urgency=medium
  35. If periodic updates and unattended upgrades are enabled, the start of
  36. periodic updates are now distributed over 24 hour intervals (as in 1.2
  37. to 1.4), whereas starting unattended-upgrade has been restricted to a
  38. time between 6 and 7 am. This only affects systems using systemd, other
  39. systems still use the classical hourly cron job.
  40. -- Julian Andres Klode <jak@debian.org> Thu, 04 May 2017 22:54:02 +0200
  41. apt (1.4~beta1) unstable; urgency=medium
  42. Support for GPG signatures using the SHA1 or RIPE-MD/160 hash
  43. algorithms has been disabled. Repositories using Release files
  44. signed in such a way will stop working. This change has been made
  45. due to security considerations, especially with regards to possible
  46. further breakthroughs in SHA1 breaking during the lifetime
  47. of this APT release series.
  48. It is possible (but STRONGLY ADVISED AGAINST) to revert to the previous
  49. behaviour by setting the options
  50. APT::Hashes::SHA1::Weak "yes";
  51. APT::Hashes::RIPE-MD/160::Weak "yes";
  52. Note that setting these options only affects the verification of the overall
  53. repository signature.
  54. -- Julian Andres Klode <jak@debian.org> Fri, 25 Nov 2016 13:19:32 +0100
  55. apt (1.2~exp1) experimental; urgency=medium
  56. [ Automatic removal of debs after install ]
  57. After packages are successfully installed by apt(8),
  58. the corresponding .deb package files will be
  59. removed from the /var/cache/apt/archives cache directory.
  60. This can be changed by setting the apt configuration option
  61. "Binary::apt::APT::Keep-Downloaded-Packages" to "true". E.g:
  62. # echo 'Binary::apt::APT::Keep-Downloaded-Packages "true";' \
  63. > /etc/apt/apt.conf.d/01keep-debs
  64. Please note that the behavior of apt-get is unchanged. The
  65. downloaded debs will be kept in the cache directory after they
  66. are installed. To enable the behavior for other tools, you can set
  67. "APT::Keep-Downloaded-Packages" to false.
  68. [ Compressed indices ]
  69. If you use Acquire::gzipIndexes, or any other compressed index targets,
  70. those will now be compressed with the fastest supported algorithm,
  71. currently lz4.
  72. -- Michael Vogt <mvo@debian.org> Tue, 05 Jan 2016 19:22:16 +0100
  73. apt (1.1~exp9) experimental; urgency=medium
  74. A new algorithm for pinning has been implemented, it now assigns a
  75. pin priority to a version instead of assigning a pin to a package.
  76. This might break existing corner cases of pinning, if they use multiple
  77. pins involving the same package name or patterns matching the same
  78. package name, but should overall lead to pinning that actually works
  79. as intended and documented.
  80. -- Julian Andres Klode <jak@debian.org> Mon, 17 Aug 2015 14:45:17 +0200
  81. apt (0.8.11) unstable; urgency=low
  82. * apt-get install pkg/experimental will now not only switch the
  83. candidate of package pkg to the version from the release experimental
  84. but also of all dependencies of pkg if the current candidate can't
  85. satisfy a versioned dependency.
  86. -- David Kalnischkies <kalnischkies@gmail.com> Fri, 03 Dec 2010 14:09:12 +0100
  87. apt (0.7.26~exp3) experimental; urgency=low
  88. * apt-ftparchive now reads the standard configuration files in
  89. /etc/apt/apt.conf and /etc/apt/apt.conf.d.
  90. -- Julian Andres Klode <jak@debian.org> Fri, 26 Mar 2010 15:34:16 +0100
  91. apt (0.7.24) unstable; urgency=low
  92. * Already included in the last version but now with better documentation
  93. is the possibility to add/prefer different compression types while
  94. downloading archive information, which can decrease the time needed for
  95. update on slow machines. See apt.conf (5) manpage for details.
  96. * APT manages his manpage translations now with po4a, thanks to Nicolas
  97. Fran├žois and Kurasawa Nozomu, who also provide the ja translation.
  98. Thanks to Christian Perrier we have already a fr translation and
  99. a few more are hopefully added in the near future.
  100. * This version also introduces some _experimental_ configuration options
  101. to make more aggressive use of dpkg's triggers. If you want to help
  102. testing these _experimental_ options see apt.conf (5) manpage.
  103. -- David Kalnischkies <kalnischkies@gmail.com> Thu, 24 Sep 2009 15:13:16 +0200
  104. apt (0.7.23) unstable; urgency=low
  105. * Code that determines which proxy to use was changed. Now
  106. 'Acquire::{http,ftp}::Proxy[::<host>]' options have the highest priority,
  107. and '{http,ftp}_proxy' environment variables are used only if options
  108. mentioned above are not specified.
  109. -- Eugene V. Lyubimkin <jackyf.devel@gmail.com> Thu, 19 Aug 2009 11:26:16 +0200
  110. apt (0.6.44) unstable; urgency=low
  111. * apt-ftparchive --db now uses Berkeley DB_BTREE instead of DB_HASH.
  112. If you use a database created by an older version of apt, delete
  113. it and allow it to be recreated the next time.
  114. -- Michael Vogt <mvo@debian.org> Wed, 26 Apr 2006 12:57:53 +0200
  115. apt (0.5.25) unstable; urgency=low
  116. * apt-ftparchive --db now uses Berkeley DB version 4.2. If used with a
  117. database created by an older version of apt, an attempt will be made
  118. to upgrade the database, but this may not work in all cases. If your
  119. database is not automatically upgraded, delete it and allow it to be
  120. recreated the next time.
  121. -- Matt Zimmerman <mdz@debian.org> Sat, 8 May 2004 12:38:07 -0700