This thread is frustrating. Everyone seems more interested in nitpicking the specifics of what OP is saying and are ignoring that a forum sends you your password (not an automatically generated one) in an email on registration.

  • NaN@lemmy.sdf.org
    link
    fedilink
    English
    arrow-up
    2
    ·
    edit-2
    1 year ago

    The one they were sending at registration was prior to hashing. It would not be reversible afterwards.

    • MajorHavoc@lemmy.world
      link
      fedilink
      arrow-up
      2
      ·
      edit-2
      1 year ago

      That’s technically less terrible, then.

      Good for them. /s

      Edited to add the /s for clarity, because the NIST recommended remediation in 2023 for emailing a password is “burn everything down and pretend the organization never existed”. /s

      Again, adding that /s since that’s not actually what NIST says to do, and I am, at best, paraphrasing.