forum and heartbleed

According to

the forum website is vulnarable for heartbleed. Any plans on fixing this ?

The forum itself is not vulnerable because it still uses only HTTP. I think the server has SSH access so that service might cause the positive detection.

However, we are in the process of moving the forum to another server managed by the OSM admins and switch to HTTPS. I guess that the OSM admins keep an eye on this issue.

Double post, discussion continues here