Originally Posted by Phaaze
You may wonder how I know they store the passwords in plain text, or at least a reversible encryption... Just do a "forgot password" request... Instead of sending you a new randomly generated password they send you your current password.
|
Yea that is the same test I use on sites once I register just to make sure they aren't going to email me the password I registered with