Even if you connect to this forum using HTTPS, as soon as you navigate to a different page, the connection changes back to HTTP. Even the login page for this forum is served over HTTP. HTTP is unencrypted, so anybody can read the network packets to see our passwords in plain text and impersonate us. The security on this forum is terrible!
The main W3Schools website is not much better. While it does use HTTPS, it fails the SSL Server Test with an F:
Please upgrade the security of both websites so that they use HTTPS by default and score A+ on the SSL Server Test. For extra good measure, consider submitting w3schools.com for HSTS preloading: