Whenever I come to the forum the default is to use HTTP for login. This is less secure and I also get a flurry of drop down warnings in the login text fields. I end up manually clicking in the address bar and editing it to point at HTTPS every time I log in. It's not a big deal but is mildly annoying. However, more importantly it would be better for site security if it defaulted to HTTPS.
Any reason this isn't done?