What are the pros and cons of a 100% HTTPS site?

Question

First, let me admit that what I know about HTTPS is pretty rudimentary. I don\'t know much about session security, encryption, or how either of those things is supposed to b

Answer 1

An important "pro" for more https at your site is the following:

a user connecting thru an unencrypted WiFi, like at an airport, can give their password in https, but if the site then switches back to http after the password page, the session cookie becomes exposed and can be immediately used by an eavesdropper.

See this article http://steve.grc.com/2010/10/28/why-firesheeps-time-has-come/#comment-2666