New member,

Not sure if it's just me, but the site doesn't enforce HTTPS by default, and when i use https manually it shows that the certificate is expired. This is a pretty big security issue for users.

If it's a cost issue, PM me, i have do have some resources. Forcing SSL with a self signed cert would be better than not enforcing one at all IMO.

EDIT:

Oops, this was already reported. Well if there are technical issues with implementing it, let me know. This kind of stuff is my day job. I might be new here, but this place is a treasure trove of good information, would hate to see something bad happen to it.