[caseyscottmckay]

Does it need it? All the site does is show you text.

[Sohcahtoa82]

Yes, static sites still need HTTPS. Troy Hunt explains it well:

https://www.troyhunt.com/heres-why-your-static-website-needs...

[dvfjsdhgfv]

N-gate has done a good job of debunking these arguments (google for "Discourse on HTTPS n-gate").

[netflixandkill]

I used to be of this opinion but enough ISPs and other intermediaries will happily MITM http (and DNS) if they can to inject ads or redirects to affiliates.

With modern hardware and letsencrypt, getting SSL going is about close to free and less effort than what most "just text" sites do for their content.

[wayneftw]

One thing that I don't like about unsecure sites is that, depending on the ISP or Wifi access point, they might inject things into the stream.

[halfdan]

Yes, because not having it will still leave your browsing on that site succeptible to MITM attacks.

[_6mdd]

>Does it need it?

Yes. It's that simple.