A local caching server, meant to speed up commonly-requested sites and reduce bandwidth usage, is a “man in the middle”. HTTPS, which by design prevents man-in-the-middle attacks, utterly breaks local caching servers. So I kept waiting and waiting for remote resources, eating into that month’s data cap with every request.
Securing Web Sites Made Them Less Accessible
Really important post by Eric Meyer.
When it comes to HTTPS, I’m skeptical of the idea of it having to be everywhere. As long as there are any kind of extra work implementing it, as opposed to having an “insecure” web site and the site in question is a simple blog and personal site like this one, I will not go through the hassle and/or pay the money required.