I have been using this very nice tool at http://ssllabs.com/slltest to check out server security for many sites where I have passwords, all in response to understanding their vulnerability to the Heartbleed bug. One of my financial institutions recently received an "F" score for one of their servers. I alerted their tech support to the result. When I check that same domain now, the ssltest analyzer returns "We are unable to perform assessment of this hostname". They also released an announcement saying their security is not impacted by Heartbleed. I want to believe them, but wonder if they did something so that slltest analysis won't work. I might add that I can login to their site, so the site is up and running.