[openssl-dev] OPENSSL_NO_SHA is still useful?

[Salz, Rich]

> If you're going to change this, then perhaps at the same time as changing the API these could be inverted so we have defines that say what /is/ enabled since that's probably a better design overall.

The key word being "probably"   There is something to be said for the idea that new features are enabled by default.  Not clear we'll change it, but it is under consideration. 

--  
Principal Security Engineer, Akamai Technologies
IM: rsalz at jabber.me Twitter: RichSalz