Just in case this has gone un noticed. Since about December of '14, Google has been trying to proactively suggest / force sites to upgrade from SHA-1 to SHA-2 SSL keys by marking the header URL bar with security warnings.
I forget when the shift happened, but https://community.etcconnect.com has gone from their subtle orange "hey this site may not be secure" symbol to the red "yeah, its probably really not secure, you should think twice about keeping sensitive data here".
By no means am I a web security expert, and while I know that the public forums are not exactly a high profile target, its exactly these kinds of sites with weaker/outdated encryption systems that the "script kiddies" like to compromise "just cause" to prove that they can and see what kind of data they can find.
This is just my personal little crusade to try to get people to step up their security protocols, so don't mind me.
