Poking around his previous articles I was surprised to see this:

> At the end of the day, OpenSSL is a library, not an end-user product, and enc(1) and friends are developer utilities and "demo" tools.

I think most would be interested to know that OpenSSL doesn't consider the command line tools worth securing.