Bug#1108992: opendnssec: OpenDNSSEC is (almost) End-of-Life

Wed, 09 Jul 2025 00:19:14 -0700 

Source: opendnssec
Version: 1:2.1.12-2
Severity: grave
Justification: renders package unusable

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi,

I am filling this as grave, but feel free to change the severity if you get an
agreement from the security team.

During the recent CENTR Jamboree 2025, NLNetLabs (upstream) announced that
OpenDNSSEC is essentially dead and they plan to announce EOL later this year:

https://nlnetlabs.nl/downloads/presentations/Nameshed-CENTR-Jamboree-20250522.pdf

The question is whether it makes sense to release Trixie with a security
software that's going to reach End-Of-Life shortly after Trixie release.

Ondrej

- -- System Information:
Debian Release: 12.11
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 
'stable-debug'), (500, 'proposed-updates'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.1.0-37-amd64 (SMP w/12 CPU threads; PREEMPT)
Locale: LANG=en_IE.UTF-8, LC_CTYPE=en_IE.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_IE:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

-----BEGIN PGP SIGNATURE-----
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=kftc
-----END PGP SIGNATURE-----

Reply via email to