I'd have felt a lot better about my recent password change if you did implement https...

(Password change encouraged by malwarish spam). (Undoubtedly courtesy of gtp somehow)