@Simon, I haven't read about any practical attacks against RSA 2048-bit keys. Given the performance cost is 5x, it's not that slight depending on your current load and hardware. Personally, I think effort is better spent in using only PFS ciphers, rather than investing deeply in 4096-bit keys. Wondering what's driving your adoption of 4096-bit beyond typical security paranoia. ;)