There is no need to "force" HTTPS for a site. The site can do it by itself.
E.g., try going to http://www.bankofamerica.com/. That's an insecure link. But before you know it, you will be looking at their HTTPS site. Initially, you will be connected to their insecure site, but it will quickly redirect to their secure site.
Think about it: if a bank depended on customers to type HTTPS, problems would develop instantly.
Yep, https is “automatic”, but some browsers allow users to enable a setting to reject sites that aren’t https.
Must be noted. If you are logged into a https connection and have a window open in a non https connection the non https connection is still visible and a vulnerability.
I use TLS (transport level security) on both my cell phone and this Linux box. SSH is not really that secure in itself.
There have been times I wished I had a VPN connection to the web.