reply to Weirdal As long as we're discussing security....
1) DSLr offers SSL login today...... so why not hash the passwords in your db?
2) If you are offering SSL login, why not offer SSL posting too? Since many of us are very opinionated and often have harsh things to say about mainstream ISP's and governments, I would think that preventing those entities with DPI machines from snooping our posts (with or without warrant) might not be a bad idea....and given that ISP's in some jurisdictions are now/soon going to be required to hang onto information about web sites visited, and perhaps even to content transmitted.
·
·
·
