Hey Ahmad, thanks for good info.
But let me bring it to the end to be sure if i think right.
You say they (ADMINS) can store the PASSWORDS in another database and can protect this database not to be seen by a foreign-user (of course i agree), but the admin himself can see the PW right? Is this not a lack of security, isn’t it? There is already a person who knows the PW, or not?