Yeah ... is encrypted , thanks to LetsEncrypt. And it's TLS 1.2 only ... so old browsers can't reach this HTTPS site. Here's how:

$ grep SSLProtocol /etc/apache2/sites-enabled/000-default-le-ssl.conf SSLProtocol All -SSLv2 -SSLv3 -TLSv1 -TLSv1.1

Let's Encrypt is a new Certificate Authority: It's free, automated, and open.

HTTPS with Letsencrypt is easy: just one one-liner, and clicking on some items.