I don't know how it would work with your service provider, but I've been using LetsEncrypt.org for free SSL certificates for a long time. It's just a nice-to-have thing, particularly since we can probably assume a lot of people use the same password they use here for everything else.
[edit: I searched after posting the topic and now I see that SSL is there but not working correctly... getting it fixed and making it the default would be ideal.]
2-factor auth would be awesome if you have the option to enable it, too.
Edited by internationalfish, 12 April 2019 - 12:53 AM.