Thanks for the reminder of this. I've implemented a work-around for now (moving direct debit processing over to donate.wikimedia.org.uk and switching to only having SSL on that subdomain) - we'll get a better solution in place before the next fundraiser. Please could you check that it's working properly for you now?

(BTW, the issue about being able to donate insecurely was a new one, since our .htaccess should have been insisting on using https. This should also be fixed - please let me know if this is still happening.)

Thanks,

Mike