Has OpenSSL significantly improved since the debacles in the last couple years? I know a handful of large companies gave funding to improve, get rid of old code or something, but I’m not really privy to its workings.
Or, should I be using LibreSSL and don’t know it? :)
Relatively straightforward to compare now that there is competition: https://en.wikipedia.org/wiki/LibreSSL#Security_and_vulnerabilities
Nice summary - this just highlights how hard it is to implement good crypto.
For me, the high-level benefits of using LibreSSL are twofold:
OS X/macOS now includes LibreSSL, BTW.