Great news, thanks!
If the images and such are retrievable via HTTPS (and I can do some testing to that effect today), then this should be something we push for, for completeness' sake. But the main one is, of course, encrypting the logon page at least so user credentials aren't sent in plaintext any more.
While many of us know better, I wouldn't be surprised if many users here share their forum account password with other sites. ;/