Do what ISC do with BIND?
it will fail certain version checks. ... and if you know what you are doing you do
--disable-openssl-version-check
Otherwise you'll be relying on some tool to check/validate the openssl running ... and that'd also only work if there was some listener. .. which I guess could be a companion of the checking tool... but still. ..
alan