[Kesty]

No,the pasword could be crypted in the DB and decrypted for the recovering password mail.

Still not the best solution, hashed password (with a salt) are way more secure if your password happens to be 12345.

[madflo]

Related : http://www.codinghorror.com/blog/2007/09/youre-probably-stor... + comments.

[throwaway64]

bcrypt has been ported to almost every language/framework in existence, USE IT.