+ SSL_CTX *old_ctx, *new_ctx;
+
+ if (!(new_ctx = SSL_CTX_new(SSLv23_server_method()))) {
+ syslog(LOG_ERR, "crypto: SSL_CTX_new failed: %s", ERR_reason_error_string(ERR_get_error()));
+ return;
+ }
+
+ if (!(SSL_CTX_set_cipher_list(new_ctx, CIT_CIPHERS))) {
+ syslog(LOG_ERR, "crypto: No ciphers available");
+ SSL_CTX_free(new_ctx);
+ new_ctx = NULL;
+ return;
+ }
+