Hi: A small organization that I work with (so far) refuses to move to HTTPS, even though they require a *login* to use their site. I'm trying to be diplomatic as possible, but I'd like to convince them as simply and easily as possible. Does anyone here have any ideas? Henry Baker