Apparently the company that handles our insurance for ransomware is upset with us because we are running web servers on Oracle Linux 8 with openssl 1.1.1. This is because that version is no longer supported by the OpenSSL Foundation. Is there any information on how Oracle intends to support the end-of-life version? I figure Oracle will follow Redhat'd lead but I cannot find anything on Redhat's intentions.