I've just run the TLS-configuration check that gets referenced: https://www.ssllabs.com/ssltest/analyze.html?d=community.nodebb.org
@julian and other @devs (you need group-mentions :P): you may want to double-check the issues listed by this:
- Experimental: This server is vulnerable to the OpenSSL CCS vulnerability (CVE-2014-0224) and exploitable.
- The server does not support Forward Secrecy with the reference browsers. MORE INFO »
Btw: great that their link to wikipedia uses http instead of https ^^
- Session resumption (caching): No (IDs assigned but not accepted)