Source: wtmpdb Version: 0.13.0-6 Severity: wishlist The main changes since the current Debian release are a new system service 'wtmpdbd' accessed over a JSON-based IPC scheme called 'varlink' heavily tied to systemd. This seems like massive overkill and it is not clear that the greater attack surface really offers overall security benefits over file-based security commensurate with what we had with classic wtmp. However, the code base still supports normal file-based operation.
CONS of upgrading ================= * New feature is not needed (but we can disable at build time). * No known bug fixes not already included in Debian patches. PROS of upgrading ================= * Future bug fixes may be included via feature commits that we don't notice. * Includes new 'wtmpdb import' operation that we owe it to upgrading users to include (but we could backport this easily). * Avoid maintenance cost of staying on an old upstream, effectively maintaining our own LTS upstream branch.
