Why do certain websites insist on emailing me my password in the account confirmation/activation email and displaying it in plain-text right in the body of the email? I’m neither interested in being told my password 1-2 minutes right after I create my account, nor am I happy if someone is looking over my shoulder and catches a glimpse of my password.
Agreed. My next question: Why do most websites need to store my password in plaintext at all?
Hashing is a good thing.