ECDHE-ECDSA-AES128-SHA prefered above ECDHE-ECDSA-AES256-GCM-SHA384

What is the name of the domain?

All domains hosted on cloudflare free

What is the error number?

Human error?

What is the issue you’re encountering

ECDHE-ECDSA-AES128-SHA prefered above ECDHE-ECDSA-AES256-GCM-SHA384

What steps have you taken to resolve the issue?

Not able to resolve, default setting from cloudflare!

What feature, service or problem is this related to?

I don’t know

What are the steps to reproduce the issue?

Do an SSLLABS check on any domain hosted on cloudflare free and check the Cipher order.

Not the solution, if your main selling point is security, at least do it right. Even for the free plan!

Otherwise be clear in the communication about the product, and clearly mark that your free plan is a crippled product.

Your phrase is somewhat contradictory… Selling point is security, at least do it right. Even for the free plan. If it was free, it wouldn’t be sold. But I get your point.

Do you really need a strong key for your TLS? If your website runs a business that needs a stronger encryption, then you’ll not survive much by wanting everything for free.

And let’s not forget that Cloudflare offers post-quantum encryption for free for browsers that support it.

And if you’re just trying to get a better score on this tool, stop wasting your time. One of the things I see is new webmasters going crazy wanting to get the best score on a bunch of tools and forgetting the main focus.