...by running kpasswd in an ssh session on ssh.hcoop.net, because we stored your initial password unencrypted during the application process. It was protected by proper Unix file modes, but it is still best if not even system administrators knew your password.