My hosts were experiencing a problem with their control panel and then they e-mailed me to say it was resolved, including in the e-mail my username and _password_. This shows they neither have my password encrypted in their database, nor do they have a clue about security.
Would anybody have any experience with any hosts that are serious about security? (SSL for email, SSL for control panel, SFTP or SSH for uploads &c.)
Edit: *Must* be outside the US! Don't want to store anything there if possible!