I have compiled my own optimised openssl packages, from the latest stable sources (0.9.6c-2woody.2). They work great, but whenever I do an apt-get upgrade apt wants to replace them with the default versions. I can hold them to prevent this, but I don't really want to do that in case I miss security updates. Is there a way to make apt upgrade the packages when there is a newer version available but leave them alone until then? Thanks, Francis