I've noticed the "Sign In" button on the forum login page now attempts to send the username and password unencrypted. The form action is now going to http://… instead of https://…