Now that https is free for all it would be nice to have a simple setting in the panel to always push visitors to https by sending back a redirect whenever they access over http. I know this is possible with a few lines in the .htaccess file already but it would simplify setting up domains to be able to do this from the panel. Likewise support for HSTS would be nice.
Ideally, though, all sites should have an .htaccess file to prevent hotlinking, directory access, etc. It's a part of web security. Easy to do and highly googleable.
I do all of the above using Cloudflare.
that's interesting. What are the benefits of doing it through cloudflair? im interested to know how to do it and if its more secure and cleaner than htaccess edit.