Hi all, this is @omervk, one of the co-founders and maintainer of Plain-Text Offenders [1].
I've just finished creating two FAQs: One for developers who come to the site and don't understand what's wrong with what they're doing [2] and another for the laymen who want to understand what we're all about and how to protect themselves [3].
The idea is that people could also send these links around to educate others.
As HN is one of our main supporting communities, I'd love to hear your thoughts about both of these new pages.
[1] http://plaintextoffenders.com/
[2] http://plaintextoffenders.com/faq/devs
[3] http://plaintextoffenders.com/faq/non-devs
This is one I always struggled to understand. If email is compromised, the attacker can request and immediately intercept a password reset anyway.
[edit: Many excellent points below. I think some of these should be in the FAQ.