The password is shown in its entirety in the Java window as you are logging
into metacat. Not sure how secure this is suppossed to be (i.e. encoded in the
Java Window, encoded as it's sent over the network, etc).