Folks are now entering keys and passwords in the several of the admin forms. This is best done using SSL secured forms.
1. Add logic to redirect all civicrm/admin pages and forms if config->enableSSL is true
2. Update form "help" in the template at civicrm/admin/setting/url?reset=1, and text in Url.hlp to reflect this change.
"Redirect online contribution / member / event and CiviCRM administrator page requests to a secure (https) URL?"