> > A diff back #ifdef OPENSSL_NO_FOO or shuffling the existing ones around > > in order to get things to build will not get accepted. On the other > > hand, diffs carefully removing the remaining defines will be much better > > welcomed. > > Being able to exclude unwanted/weak crypto's would be nice though.
I think the approach is misguided. Fix the applications that use bad crypto. Don't get mired up in removing it from crypto libraries with #ifdef's, which people won't tweak to disable it.
