[ic] {OT} hardening SSL without rejecting users

[Grant]

> I've been advised to harden my SSL in the following ways:
>
> 1. disable SSL 2.0
> 2. disable use of SSL ciphers which offer either weak or no encryption
> 3. disable anonymous SSL ciphers
>
> Will some website users not be able to use https if I do this?
>
> - Grant

I'm sorry, I sent this to the wrong list.  I'd actually love to
discuss it here if anyone has any comments.

- Grant