I see your point, but I wonder why you would want to allow http for, e.g., the data in the listinfo subscribe form. I.e., why not just access all of Mailman's web UI via https and use server redirect to redirect all http URLs?
** Changed in: mailman Importance: Undecided => Low
** Changed in: mailman Status: Invalid => Incomplete
** Changed in: mailman Assignee: (unassigned) => Mark Sapiro (msapiro)