We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!
thieh (3654731) writes "In the process of my job search I have come across recruiters and agencies that require me to sign up on their website. After I sign up with one of those websites they end up sending me back the password that I chose in plaintext in the confirmation email. Believing that to be a security problem (My assumption was that only generated passwords are to be mailed in the open unencrypted, and that the website has no plans to introduce two-factor authentication), I immediately delete the account and change all my passwords because chances are the passwrod setting habit may have been exposed. The question now is that since I don't have formal IT/sysadmin training, how to I tell these people that such a system is problematic and should be addressed? How would the situation be different if you can sign up tings that cost money (like resume critique or interview practice) using that account?"