Changing password security problem

Currently changing your password is as easy as typing in a new one twice. This is potentially dangerous because it means that anyone with access to my computer could change my password.

Password changes should require typing in the old password as well.

Matt: This is a great point, and I’ve made it feature request #212 in the bug tracker. We will discuss it this upcoming Monday during our developer’s meeting and get back to you as soon as possible.

I noticed this is a won’t fix in the bug tracker, but I still think this is an issue (especially being that auto logon is not optional). Any idea why this is, and could it be changed?