Simply having a domain managed by Cloudflare makes it magically https; yes, the traffic between the origin server and Cloudflare isn't encrypted, so it's not completely "secure", but for most uses it's good enough. It's also zero-maintenance and free.

Keep up the good work! ;-)

Thanks! You can also set up free origin certs to make Cloudflare edge to origin connections encrypted as well.

SSL added and removed here ;-)

yeah I'm convinced this is the real reason for these changes...

perverse incentives indeed.

Is this a joke (as in, that you don't actually work there) to make CF look bad for posting product advertisements in comment threads, or is this legit?

It's one of my first times posting on HN, thought this could be relevant helpful info for someone. Thanks for pointing out that it sounds salesy, rereading my comment I see it too now.

People who are proud of the work they do are rare enough that we shouldn't punish them for it.