RT @benjy: I don't always hash my passwords, but when I do, I use salt.