Logged In: YES 
user_id=764

while I completely agree with you about the security issues,
 I don't
think that storing the passwords plaintext on the server
side will
hurt anybody. And doing so allows admins to choose how to handle
them, i.e. whether to add a script to send out passwords
plaintext if
requested, or whether just to reset it. And since you cite
mailman,
it also allows monthly reminders containing plaintext
passwords :-)

Again, the question is not whether roundup based trackers should
send out plaintext passwords, but whether it should be
possible for
admins to write such scripts.