Andrei Pelinescu-Onciul writes:
It depends, if you want to use TLS extensions (for now
this means
getting the TLS server name extension from the script via the
@tls.serverName select or the &tls_peer_serve_name pvar) then you need
at least the 1.0 version of openssl. If you don't you can stick with the
older version.
without TLS server name extensions, TLS does not work in multi-domain
environment? if so, looks like 1.0 is a must. the bad news is that 1.0
is not included any any debian release (not even unstable). looks like
openssl in debian is at dead end.
-- juha