Why was this comment downvoted? The NSA has built custom hardware to crack 1024 bit DH in a few days[1], so the site owner really should regenerate the DH parameters and use 2048 bits.
It would also be nice to disable 3DES ciphers and only allow ciphers with forward secrecy.
