Ian Jackson writes ("Re: Dreamhost dumps Debian"): > I think we need to do more than that. We need to arrange to > automatically disable affected software (by default). (And that has > to be done in a way that allows an affected user to re-enable it, and > which is sorted out properly on upgrade.) How about: Package: security-support Conflicts: iceweasel (<= latest version in squeeze), ... And a hideous warning in the prerm. Ian