sendmail should be ported to use NSS library for cryptography.
See the tracking bug for details and links on how it could be done.
If you really do so, please keep the OpenSSL support in spec file to allow me
privately easy switching back. IMHO NSS is only one big memory leak.
Please reference any memory leak bugs in NSS.
NSS goes through extensive testing and is used on a number of servers and is
very sensitive to internal memory leaks, so if you have actual cases where NSS
is actually leaking memory please file the appropriate bugs.
This is no longer on-going effort (see tracker bug).