system
6
My suggestion is as simple as removing the password from the confirmation e-mail.
I’m a technician myself and I’ve been on many forums and sites all over the internet since late 90s, I do know how to protect myself and have my own “password policy” or whatever.
However, as both of you are experienced users you probably know as well as I do that many users will still use the same password, simply because they don’t know better. To help protect the users, my suggestion is that you remove the password from the e-mail. (I really don’t see the point of having it there anyway as they picked that password just a few seconds before they got that mail)