> Crypt::SaltHash makes the salt a function of the username, I haven't > looked too much into the implementation but it certainly isn't the > normal method of salting -- though it most probably helps some level. > It's not. Crypt::SaltedHash doesn't know about the username. cheers, mo