Well, your password isn't stored on the server at all, so you've secure from that sense. When you register, your password is stored like this
You enter your password > Server makes an MD5 Hash of your password (an irreversible encryption) > Password is stored in an mySQL Database.
When you login, it re-encrypts the password, and compares the hash in the database with the hash of the password the user entered.
A hacker could reset your password somehow, but not read your password (Unless he acquired the hash, and used somthing like the "hash dictionary" at milw0rm.com). So if you wanted to be as secure as possible, you should use a password with 12+ characters, and a combo of Text, Numbers and Symbols.
You enter your password > Server makes an MD5 Hash of your password (an irreversible encryption) > Password is stored in an mySQL Database.
When you login, it re-encrypts the password, and compares the hash in the database with the hash of the password the user entered.
A hacker could reset your password somehow, but not read your password (Unless he acquired the hash, and used somthing like the "hash dictionary" at milw0rm.com). So if you wanted to be as secure as possible, you should use a password with 12+ characters, and a combo of Text, Numbers and Symbols.