I've been around long enough to recall the referenced thread... Back then, I didn't care as much, but this idea has come due. No site should be non-SSL (TLS 1.2 or better) these days.