When I reset my emby password, I get my new password emailed to me in plaintext. This isn't even a temporary password either, you are encouraged to change it but it is not mandatory at login
This suggests emby is storing passwords in an unhashed form (otherwise they would not know the password itself and wouldn't be able to email it)
Given the recent hack at Plex, security should be top of our minds, that's the only reason I'm asking
Also, is the password for Emby forums and the emby web client the same?