Hm, interesting idea. And then they might not have done user authentication at all. Also an interestingly bad practice, plausible, but non obvious and not in any way hinted at by the article.
> one of the aggrieved chose to show their displeasure by posting the list of all Dialup World user accounts online – along with every password in clear text.
