Ars Technica: Meet Greyhound.com, the site that doesn’t allow password changes

I considered myself fairly jaded when it came to security stories, but this made my jaw drop. From Ars Technica: Meet Greyhound.com, the site that doesn’t allow password changes. “When it comes to websites with bad password policies, there’s no shortage of bad actors. Sites—some operated by banks or other financial services—that allow eight- or even six-character passwords, sometimes even allowing letters to be entered in either upper- or lower-case? Yup. Sites that e-mail forgotten passwords in plaintext? Sadly, all the time. … But recently, I saw a site policy so bad I couldn’t stay quiet.”