Hi, We're missing reasoning for HSTS, SNI and TLS extensions in our theory section. I'd suggest adding a short TLS section with sub-topics on extensions we do use in recommended configurations of daemons. A paragraph for each would suffice I guess. I may add that within the next couple of days. Aaron