APT-GET and packing peanuts

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!


I wanted to get phpmyadmin to administer mysql. I did a search and
found this:


It says that it is in the universe repository. I had some noob
questions about this.

1) Is the universe repository controlled by ubuntu? What I mean is that
someone can't just go and add the myphpadmin package into it right, it
has to come from the legitimate source that makes myphpadmin. (what i'm
afraid of is someone loading up a compromised package into the
repository). (this does not have to deal with popular things either,
lets say, someone uplaoded myhacky package, and if i come across it, I
want to make sure someone has verifired it.)

2) If I install a package like myphpadmin from apt-get, it should
automatically install updates? And do these updates correspond to those
that are released by the project team? Or are the patches only
distributed when someone has compiled and uplaoded to the respository?
(I'm concerned about security vulnerabilities that are fixed by
phpmyadmin team, not getting to me immediately as it is released).

Site Timeline