openssl: disable compression

This update disables compression in openssl by default, as
the varying sizes resulting from compression can be used to
retrieve plaintext in various cases. (CRIME attack CVE-2012-4929).

This update introduces a environment variable
which can be set to "no" to reenable compression in selected

Fixed bugs
VUL-1: CVE-2012-4929: apache2: CRIME attack
Selected Binaries
openSUSE Build Service is sponsored by