Regarding our business model: Using Debian on those customer systems was not our choice, it was the customer's. But we recommended it - over the other choices which were SuSE and Windows Vista. It kind of plays into our hands though, because the mere know-how and ability to maintain and use the software maintenance infrastructure mentionend above is part of our business model. We ourselfes are always keeping an eye on CentOS for it's longer maintenance cycles, but we love deb over rpm.
Thanks for the links. I can see why the c_hash problem really forces the nagging dependency on curent openssl binary packages. And it seems I'll have to go another step from beloved svn towards git. Apologies for the "shock" remark, I obviously misinterpreted one of the older comments. And sorry for not quoting legacy, I'm on a tablet now, almost AFK.
