Why was this comment downvoted? The NSA has built custom hardware to crack 1024 bit DH in a few days[1], so the site owner really should regenerate the DH parameters and use 2048 bits.
It would also be nice to disable 3DES ciphers and only allow ciphers with forward secrecy.
It would also be nice to disable 3DES ciphers and only allow ciphers with forward secrecy.
[1] http://blog.erratasec.com/2013/09/tor-is-still-dhe-1024-nsa-...