I want to talk to HostGator, but I want to check my suspicions before I make a story.
I asked a customer service representative to help me add an SSL certificate to a site I'm hosting at their home. When it was finished, I received this email with all my login information and my complete password in clear (I left the first letter visible as evidence). I created this password more than a year ago and it was a big surprise to learn that they had sent it back to me, without message, in clear text :
I immediately reported this to the rep who repeatedly tried to convince me that everything was fine. I decided to give up after a few minutes, because I think I should bring it to someone else from the top. Before doing so, is it safe to assume that my password is stored in their database as plain text? If so, do you have any suggestions on how to solve this problem with the supplier?