maybe you ask the person who creates the packages how nginx was build, which openssl-version applies etc pp. can you execute "openssl version" on the server nginx runs on? Posted at Nginx Forum: http://forum.nginx.org/read.php?2,243341,243351#msg-243351