[spiderpug]

I'm glad I used a fake email address and unique password when I signed up for this:

  - no HTTPS
  - passwords are stored in plain text
  - password is easily extractable on profile page

[newscracker]

That's a good find! I registered with a "junk" email address after seeing this comment. Just a "view source" on the profile page shows the password in clear text.

@arntzel, @nicholjs, would you please fix this ASAP?