Feared, yes. Realised? So far no. You can mitigate this too by changing the SSL ciphers list to avoid DH methods totally. This may be how we default 3.x FR in the future. Having DH around makes things more interop sensitive alan