lophos Fri, 24 Jul 2015 14:19:48 -0700
The default configuration of SSL in nginx (although commented) supports weak Diffie Hellman cipher according to ssllabs.com (Grade B).
If you run nginx please use ssl_dhparam /path/to/dhparam.pem; inside the server block.