(cherry picked from commit c5c5baf)

(cherry picked from commit 997a6f6)

This test creates a PPPoE link between two machines, and verifies
that the machines can ping each other.

(cherry picked from commit ae02b3d)

services.pppd.peers was lacking a description, causing a trace warning
resulting in a parse error in the metrics job.

(cherry picked from commit 0256080)

(cherry picked from commit 603e3b1)

[19.09] bind: 9.14.8 -> 9.14.9

We should wait until after `multi-user.target` is triggered to allow
hardware to finish initializing, such as network devices and USB drives.
This ensures `powertop --auto-tune` sets more tunables to "Good".

Fixes #66820

The last release was in September, so it's surely "vulnerable" now.
https://www.mozilla.org/en-US/firefox/60.9.0/releasenotes/

This is the same appproach we've taken for esr-52.

(cherry picked from commit f703a3a)

`rustfmt` is now a compile time dependency because the varlink generated
code is formatted with it.

(cherry picked from commit c976dc1)

They both base on firefox versions where support has ended some time
ago. With CVE-2019-17026 (and other vulnerabilities) out and exploited
in the wild, these should not be used anymore. tor-browser-bundle-bin is
a better alternative.

[19.09] firefoxPackages.tor-browser*: mark as vulnerable

(cherry picked from commit 05c0695)

It's based on 60.3.0, whose support ended around October 2019.

(cherry picked from commit 0e75514)

[19.09] firefoxPackages.icecat: mark as insecure

lorri: unstable-2019-10-30 -> unstable-2020-01-09 (backport to release-19.09)

[19.09] nixos/pppd: init

(cherry picked from commit 174190d)

(cherry picked from commit 0d9600f)

Fixes #77266: CVE-2019-1551
https://www.openssl.org/news/secadv/20191206.txt