I notice this bug is still open. Has it been decided whether to package dnssec-conf or, if not, how dnssec look-up should be configured under debian?