https://wiki.mozilla.org/Security/Server_Side_TLS#Recommended_Ciphersuite should we update our apache (and other browser) ciphers list based on that? -- glen