One concern with PythonAnywhere until now was that the connection between your browser and the server was not encrypted – although it’s unlikely, it was possible that someone could see what you were typing. This was obviously a Bad Thing, but it was hard to fix – encrypting the web pages alone would have been easy, but the console connections run over a different protocol and some of the underlying software that PythonAnywhere depends on didn’t work properly when run in encrypted mode.
A few days ago, those bugs were fixed – so as of today, we’re happy to announce that PythonAnywhere runs completely over secure connections – every page we serve, and every console connection.