Is login information hashed at least? I assume login information is protected, but never understood why SSL would be needed for a forum, I mean, anything you do here pops up in clear text in the comment sections anyway, right? People on Reddit were always asking for SSL too and I never really understood that. Protect the login handshake definitely, but the rest? Not really sure there's a need.

Encrypting just for the principle just adds un-needed overhead to the stack.