Naturally, there was something I saw in the archives I want to react upon, even if not a vote... I am also the maintainer of the OpenSSL (and LibreSSL) ports for FreeBSD and am the author of many patches for LibreSSL, No-SSLv2, No-SSLv3 for upstream projects.
I was searching for the rationale to provide a version of Apache which is newer than what you get from your Operating System. Obviously, there _is_ a need to have something newer than your OS, e.g. Apache 2.4.6 on RHEL 7 is missing too many features. When you are smart enough to be able to build your own Apache httpd, are you not also smart enough to build all dependencies? FWIW: I manage, to my dismay, 2 Apache front-end servers acting as reverse proxy on RHEL7. When I ran into update problems with the Base-OS I decided that I would just build the whole stack (from zlib upwards) from the ground up. If you would want mod_http2 you are in trouble on these old systems in all cases, curl with HTTP/2 support? libnghttp2 in your repos? Managing multiple versions of OpenSSL is already a head-ache. For 1.1 you need compat shims or lots of ifdefs, 1.1.1 (currently -pre2) will only add to that... I may be an odd-ball that I want to manage this kind of a setup but I think that if you can build one application, you can build more. They happily live separated into /usr/local on RHEL7... Cheers, Bernard.
