They don't have access to passwords, but what about the password hashes? Why not just transfer the hashes to the new system?
i dont agree with this method, i would go for email reset password to left those dummy accounts and the forum will be clean
But what about legitimate users who have a now invalid email? Why are you leaving them out?