Hy,
I’m not an expert, but I have the feeling is not a very secure policy to email new user their password in plain text. As a security company, the least we should expect would be certified encrypted email, with a public key somewhere around or… no password in the email at all…
Or I’m just paranoid? (:NRD)