I realized that i-MSCP stores raw (plain text) passwords in MySQL tables (ex. mail_user, sql_user).
This is very dangerous security risk. Why do not use encryption in 2016?
The old ispCP encrypted in SQL passwords in sql_user tables, so method is working. What's the problem?
Dovecot able to use sha256, sha512 encrypt too.
I can't understand...Why don't use encryption?