No, !GNUsocial should not force TLS. Although I'm a big fan of !crypto and !security, the current state of global PKI doesn't inspire confidence, and I'm not going to participate in that. We know that certificates can be spoofed, and we know that "they" have infiltrated Certificate Authorities and major sites to subvert what we believe is secure. Instead, we need a system that does not depend on a hierarchical PKI with a single point of failure at the Certificate Authority. We need a federated security solution with a Web of Trust.