MyBB passwords are hashed, a hash is a one way encryption so theoretically the password cannot be recovered (and for good reason). You can use comparison tables such as the one on millw0rm but you have to remember that MyBB uses quite a complex salt (a prefix to the password that changes the hash substantially) so the chances of successfully using this technique is very slim.
When someone enters their password to log in the inputted password is hashed then compared to the stored password hash. At no time (apart from the initial hashing process) does MyBB process un-hashed passwords (ie. MyBB does not and cannot decrypt the password encryption).
Honestly though, if the user values the convenience of being told their password over proper encryption of their password then they are a fool. Just tell them to use the password reset function to issue them with a new password.
When someone enters their password to log in the inputted password is hashed then compared to the stored password hash. At no time (apart from the initial hashing process) does MyBB process un-hashed passwords (ie. MyBB does not and cannot decrypt the password encryption).
Honestly though, if the user values the convenience of being told their password over proper encryption of their password then they are a fool. Just tell them to use the password reset function to issue them with a new password.
MyBB Support team member.
![[Image: smallsig.png]](http://moddroid.com/images/smallsig.png)