BUGFIX: fix password for password recovery (was not random enough)

BUGFIX: fix password for password recovery (was not random enough)

The password was just a constant string, the email, and the current
time. Therefore, someone could just request a new password and even
without getting the email, just try out different time stamps around
the time the person requested the email and recover the temporary
password. Added a random string to generate the password, which should
fix this.