0
1

[–] LemonRose 0 points 1 points (+1|-0) ago 

Can't explain it, but one time I created an account to login for a site. They then printed out my username and the full password I entered and snail mailed it to me.

0
1

[–] Subtenko [S] 0 points 1 points (+1|-0) ago 

smh :/

0
0

[–] Reow 0 points 0 points (+0|-0) ago 

In fairness, most sites let you recover your password via your email account - if you lose control of your email, you will lose control of those accounts attached to it. That said, you can at least tell when you've lost control of your account if someone is forced to reset the password, and it's definitely a pain if you reuse passwords.

0
1

[–] Subtenko [S] 0 points 1 points (+1|-0) ago 

Main concern was if the info is logged into a database tho, I cant tell it they did with the email or not.

0
1

[–] Reow 0 points 1 points (+1|-0) ago 

True. If the email with the password is sent out after you signup (i.e. not immediately), then obviously they have very bad protection on it (as they either have it stored plaintext, or in a decryptable fashion). If they send it out immediately, then they still suck, but at least they are hopefully storing a one-way hash.

I had a problem about a year ago where I rang up my ISP (largest one in my country) and the operator told me what my password was. It's bad enough that they didn't store it securely, they also let any of their staff see it.