Anyone using http auth on a non-https server should be well aware that the "security" is little more than a veil to a dedicated snooper, but the point is that RSS readers on the whole can't use cookie-based authentication, which severely limits the usefulness of this mod on boards that hav...