On Wed, Jul 31, 2013 at 8:56 PM, Paul Selitskas <p.selitskas(a)gmail.com> wrote:
Yes, that is exactly what I do. But Google, for
instance, redirects me to
HTTP, and if I've logged via HTTPS recently, I would have to log in once
again via HTTP. It's very frustrating.
I think you've misinterpreted. "HTTPS Everywhere" is a proper noun.
https://www.eff.org/https-everywhere
Are there public statistics on HTTPS
v. HTTP processed requests share for Wikimedia? Rough numbers?
I have no idea.
For inexperienced users yet concerned about privacy,
there should be an
HTTP/HTTPS switch in the Preferences page. We have one at the
registration/log-in page, but I'd like MediaWiki to remember that I want to
use HTTPS only.
That was considered but I believe the consensus was not to do that.
Instead we will (eventually) force all logged in users to HTTPS as
long as they're logged in. (So like your proposal except that the
preference is hidden and always enabled for everyone)
-Jeremy