Before T252302: Install WSOAuth on Wikispore, users had to set up a password during registration. Those passwords still exist in the database; we should purge them to get rid of unneeded personal data.
(That was a confused comment. deleteLocalPasswords.php deletes all local passwords, regardless of what auth extension is used. Which did work well in this case, but wouldn't in general.)