No not at all... the very same security issues did cross my mind but I figured that for the standard user the risk to the site was minimal. []
https://www.ubbdev.com/threads/php/images/icons/smile.gif[/] Maybe I'll set up some sort of time limit on the newly issued password and have it automaticly changed and display a count down warning. (You have 6 days left before your password is automaticly changed... click here to set your password now.) type display?
LoL I think that on an average this hack will cut down on about 20-30 emails a month on how and where and why for logging in.