Logged In: YES 
user_id=6405

The password encryption scheme is flexible at present - all it needs is 
to be configurable. The default will always be SHA encryption :) 
 
I'd be happy to accept a CGI form action that resets a user's password 
and emails the password  to them (based on a supplied email address). 
A more complete solution would mimic the sourceforge forgotten 
password system (you have no idea how often I get email indicating 
that someone else thought they had the sf username "richard" :) 
 
The latter implies extra functionality in the mail gateway which isn't 
possible at present :(