>Thanks for your reply. What I'm suggesting would not affect John or anybody else who can't access https sites, though. I'm not suggesting making the entire site https accessible, just adding a single, secure page as an alternative way to log in.
>
>Only the optional secure login would be via https. Conventional login would still be available the same as it is now, and once authenticated, whether via http or https, access to the site would continue via normal http as it is now. Yahoo! is one example of a site that does this, for example.
Yes, I have seen that. But, any additional development is in pending right now in favour of the upscale of the code infrastructure later on in the new year.