Lots of people don't like to have their sessions stolen via Firesheep. That's one reason to do "all https all the time".
On 2/15/11 1:09 PM, jidanni@jidanni.org wrote:
Is that how Facebook™ or Google™ operate, sending every single component via HTTPS?
No. Only the vital personal settings, password stuff is done that way.