Old distros use older, less secure SSL, but it can't be updated by pkg manager because the repos are stale. So it OpenSSL 3.x.x has to be built from source. After the is done, python is built and it now points to the new OpenSSL as its resource, and hence is "frozen" into ncpa. This install will include an updated zLib (1.2.12), since it has security problems too.
Write OpenSSL, zLib install from source script.
Test on all necessary distros (centOS 7, 8 & Ubuntu 16-20 to start)
Integrate into build scripts for linux (what about Windows? maybe manual?)
Build should only install oSSL on systems running oSSL < v3 (with option?)
Old distros use older, less secure SSL, but it can't be updated by pkg manager because the repos are stale. So it OpenSSL 3.x.x has to be built from source. After the is done, python is built and it now points to the new OpenSSL as its resource, and hence is "frozen" into ncpa. This install will include an updated zLib (1.2.12), since it has security problems too.
Build should only install oSSL on systems running oSSL < v3 (with option?)