1. Yes, crucial security package propably a fair reason to update 2. On dropbox, simply because I dont have the hang on garage (yet) and - I basically needed this for my own pentesting purposes (together with ruby1.93) for Metasploit. [...] No, not a rant I completely understand Your security concerns, as well as compatibility. I only tested this personally, and I an not guarantee issues, as it does make a replacement of the standard 0.98 installed version (this was needed for me). So, I am sure further testing and more complex testing will be a good idea, before it will/can/should make it into any official repositories.
[...] 3. Right, sources are available. This is compiled straight of original sources ( http://www.openssl.org/source/openssl-1.0.1e.tar.gz ) [...]