This is fixed now
Also, didn't we have https at one stage (if maybe briefly)? It doesn't seem to work anymore...
I appreciate the attempt, but this is only superficially fixed. The most important aspect, the login form, still uses HTTP regardless of whether it was loaded over HTTPS.
More generally, the site seems a little schizophrenic about whether it generates HTTP or HTTPS links. For example, the top menu buttons respect the current encryption state (being relative links), but linking to topics downgrades to HTTP (absolute links including protocol).
HTTPS for the entire session would be perfect. Forcing HTTPS just for the login form would be great. I know you guys are busy, so I won't push for either of these. However, HTTPS that cannot
protect my login seems a little odd.