It's always bothered me that I'm basically broadcasting my login information by coming here. Call me paranoid, but I'm sure that I'm not the only person who feels this way.
I just want to know, what's the rationale behind not using https? Is it implementation difficulties? Server load? The cost of getting a certificate?
Updated by dovac