CowboyBob500

phpBB doesn't actually store your password in the database anyway. It uses an MD5 hash for this information. For those who don't know, MD5 is a non-reversible hashing algorithm. When you log in, the forum software hashes the password you just typed in and compares that to see if it the same as the hash in the database. If it is, you get in. To repeat, your password is never stored in the database, and you cannot reconstruct a password from an MD5 hash. I have an idea how this happened (I'm a professional software engineer by trade) but I'm not going to speculate here. I can, however, say in certainty that the database wasn't stolen.

I'm 34, also an IT consultant. I run my own business and play Runescape to unwind while I watch my staff work :twisted: I never say my age in game anymore though. I did once, and some young girl started sending me PMs saying I was some kind of sick pedophile groomer, and that no-one my age would play the game. That scared me to be honest. Nowadays you can't afford to be accused of that kind of thing.