11 upvotes, 0 direct replies (showing 0)
View submission: Reddit's Streak of Bad Luck Continues...
It's trivial to hash all the passwords, as they have them in cleartext already! It's only changing hash type that gets tricky.
Still, what's even better than places that e-mail your password to you when you lose it, is the ones that have you log in via HTTPS, then e-mail your password to you when you create the account.
Personally, feeling quite lucky, reddit.com purely coincidentally has a nearly throw-away password, which I use on first registration, and then change on any site with enough sense not to e-mail it to back me with my username.
There's nothing here!