On Wed, Jul 31, 2013 at 8:56 PM, Paul Selitskas p.selitskas@gmail.com wrote:
Yes, that is exactly what I do. But Google, for instance, redirects me to HTTP, and if I've logged via HTTPS recently, I would have to log in once again via HTTP. It's very frustrating.
I think you've misinterpreted. "HTTPS Everywhere" is a proper noun. https://www.eff.org/https-everywhere
Are there public statistics on HTTPS v. HTTP processed requests share for Wikimedia? Rough numbers?
I have no idea.
For inexperienced users yet concerned about privacy, there should be an HTTP/HTTPS switch in the Preferences page. We have one at the registration/log-in page, but I'd like MediaWiki to remember that I want to use HTTPS only.
That was considered but I believe the consensus was not to do that. Instead we will (eventually) force all logged in users to HTTPS as long as they're logged in. (So like your proposal except that the preference is hidden and always enabled for everyone)
-Jeremy