Package: ftp.debian.org Severity: normal I am one of the last maintainers of the kedpm package, and I am not using it anymore. Recently, a security issue was found in the package (#860817), and I feel there may be more - I haven't deeply audited the source code myself. Or if I did, it was a long time ago, and I can no longer vouch for it.
So please, remove kedpm from Debian sid. I'll take care of updating the packages in stable/LTS but let's put this thing out of its misery. For the record, fpm2, from which kedpm derives, was also removed from Debian stretch. Note that kedpm is the software in Debian that can parse "figaro" password databases.
