Heyla,
is it deliberate that OPENSSL_NO_DEPRECATED is defined for the new openssl?
So we don't get a (major) version with both old and new functions and thus
we are expected to fix 3rd party products?
e.g. change DH_generate_parameters() calls to use DH_generate_parameters_ex()

This seems a bit strange to me unless the deprecated functions had major
security problems/deficiencies.

I came across a few of these rebuilding all my pkgsrc and some were failing
to build, e.g. news/inn, security/ssldump

Regards,
Geoff