Now we need the same thing for StartTLS and mail servers...

There'd be an easy solution: make HTTPS look-up the default when typing in www.domain.tld. HTTP only, if the user actually types http:// in front of it. And we all know, we're lazy. ;-)

Tu aurais un lien en français ? J'avais cru comprendre que Mozilla voulait inciter à passer un max de sites en https, moi je veux bien suivre le mouvement avec mon site d'asso mais je ne sais pas du tout comment ça marche

This basically means that we're gonna have warning when accessing web sites using mere HTTP protocol? I wonder how invasive this warning will be. If it's the same as the "self-signed certificate", I feel like a lot of users won't like it.