diff --git a/SOURCES/blacklist.conf b/SOURCES/blacklist.conf
index 3bbf7ce..0f5a31c 100644
--- a/SOURCES/blacklist.conf
+++ b/SOURCES/blacklist.conf
@@ -455,7 +455,6 @@ map $http_user_agent $bad_bot {
 	"~*Steeler"	1;
 	"~*Stripper"	1;
 	"~*Sucker"	1;
-	"~*Sucuri"	1;
 	"~*SuperBot"	1;
 	"~*SuperHTTP"	1;
 	"~*Surfbot"	1;
diff --git a/SOURCES/ssl.conf-example b/SOURCES/ssl.conf-example
index 51b4a29..8f9bf14 100644
--- a/SOURCES/ssl.conf-example
+++ b/SOURCES/ssl.conf-example
@@ -18,7 +18,7 @@ add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; prelo
 add_header X-Content-Type-Options nosniff;
 
 ## Modern compatibility
-ssl_ciphers TLS13-AES-128-GCM-SHA256:TLS13-AES-256-GCM-SHA384:TLS13-CHACHA20-POLY1305-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384;
+ssl_ciphers TLS13-AES-128-GCM-SHA256:TLS13-AES-256-GCM-SHA384:TLS13-CHACHA20-POLY1305-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES256-SHA384;
 
 ## Intermediate compatibility
 #ssl_ciphers TLS13-AES-128-GCM-SHA256:TLS13-AES-256-GCM-SHA384:TLS13-CHACHA20-POLY1305-SHA256:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS;
diff --git a/SPECS/nginx-more.spec b/SPECS/nginx-more.spec
index 0a2061b..59f33a8 100644
--- a/SPECS/nginx-more.spec
+++ b/SPECS/nginx-more.spec
@@ -9,7 +9,7 @@
 %global nginx_webroot		%{nginx_datadir}/html
 %global gcc_version			8
 %global pcre_version		pcre2
-%global openssl_version		3.2.0
+%global openssl_version		3.2.1
 %global module_ps_version	1.13.35.2
 %global module_ps_commit		13bee9d
 %global module_psol		%{module_ps_version}-x64
@@ -476,8 +476,8 @@ fi
 %endif
 
 %changelog
-* Sat Dec 9 2023 Karl Johnson <karljohnson.it@gmail.com> 1.24.0-5
-- Bump OpenSSL to 3.2.0
+* Wed Jan 31 2024 Karl Johnson <karljohnson.it@gmail.com> 1.24.0-5
+- Bump OpenSSL to 3.2.1
 
 * Tue Nov 7 2023 Karl Johnson <karljohnson.it@gmail.com> 1.24.0-4
 - Bump OpenSSL to 3.1.4