Passwords should be salted

Idea created by Alan Apter on Aug 23, 2016
    Already offered

    Edit: Keeping this for posterity, but this has been fixed, see comments by Jelle Vink


    Original post:


    Currently passwords in the database are hashed, but not separately salted.


    Not the biggest flaw, because if the database was compromised, you'd have worse things to worry about, but it is considered the best current security practice.