I can't believe the sheer arrogance of the ideologic "security folks", preaching supersecurity or none at all. In practice, having weak security IS better than no security. In this case, at least having encoded passwords is still better than having plaintext. Becaus it at least prevents random/accidental password exposure. Otherwise we could pretty much also stop **** the password entry fields.