(1) If I browse the web using a secure webpage (https://) from an open
wifi spot such as at a cafe (no WEP/WPA/VPN), is my surfing session
secure-- or even though it is https:// is it insecure from a packet
sniffer intercepting wifi signals?

(2) If I browse the web from an open wifi spot such as at a cafe (no
WEP/WPA/VPN), is my surfing session secure if I do my surfing by means of
ssh X tunneling and remote X client apps, for example if I
ssh -X me@myhomepc
and then once connected via ssh to my home computer I run a browser or
really any X application remotely?