http://qs321.pair.com?node_id=1156733


in reply to Mind the meta!

Far better would be to hash the password and check that the hash exactly matches the expected hash of the password, and to only store the password pre-hashed.