[tor-dev] Preferred OpenSSL config for Tor?

[Steve Snyder]

What are the recommended build options for OpenSSL 1.0.1x when building it for use with Tor v0.2.5.x?

Put another way, what default OpenSSL features (ciphers, etc.) should be disabled and what optional features should be enabled?

My goal here is to build a Tor-oriented OpenSSL, one that dispenses with features Tor doesn't need/use while enabling those that improve security and/or performance.

Thanks.