Just a heads up, due to certain aggressive policies being put into place by Google via search and Chrome, the site is now being served over encrypted links. Everything seems to be running properly this way thanks to Let's Encrypt making the process pretty painless.

Any links to the site should be updated to reflect this if you have them. I'm still working on forcing the redirects from the non-encrypted URL to actually work.

Redirects should all be working properly now.

For future reference, I dunno if you use apache as a web server, but the way they've split up their config system you can now just define multiple "sites" and point them at the same document root. So, in theory, if you had a VirtualHost *:80, you could also set up a VirtualHost *:443 pointing at the same set of pages, but with all the security stuff enabled.

You can also play around with mod_rewrite to force any http request to become an https one. I haven't actually done that, but it seems reasonable.

I just used s 301 redirect in the Apache config once I figured out how to make it do that. Been working pretty good since.