SSL for all forum pages. Utilize HTTP Strict Transport Security. Anything less is not secure.
All forum pages should be SSL/TLS. Anything less is not secure. While it likely won't matter to many forum users, it could to those who also have paid myFICO memberships.
I'm not a myFICO paid member, so I'll ask this: Do forum user logins also work for myFICO? If yes, that's a significant security risk.
While users can mitigate much of the risk by using secured wifi under their control, that's not always feasible. Such as for those who who frequently travel or have slow home based connectivity or limited mobile data quota and rely on public wifi instead.