Do any of the staff/administrators/etc. have access to our passwords? In other words, is it safe (well as save as it ever is) to use our FESS password as a password for other fora?
We can NOT view your password. They are encrypted by the system, though I'm not sure what the encryption strength is. Blacken or Togie might know better. They're encrypted at the SQL level.
We CAN change your password, but we cannot view it. So the only way I or any other admin can know your password is if it's either told to me by the user, or I make it myself.
So in other words, if I REALLY REALLY wanted to log into our SQL server, take what I'm pretty sure is a 128 bit hash and spend hours decrypting it, then yes, I technically could. But I have no interest in it, nor would I - a security engineer by trade - sacrifice my members' security like that.