The packages are promoted for extras-testing now.

Furthermore, I will implement a simple update to use http connections instead of https, but I would rather recommend to use https since not only the password and username are transferred unencrypted, but also all the data. I think the "nothing is secure"-argument should not be used to omit any kind of data protection.