You need to ofc 'salt' buyers passwords ahead of hashing them in order to avoid being able to Get well the original password from the hash. $endgroup$$begingroup$ As hashes are preset duration, does that mean that even if not specified when creating the password, all login programs would wish to have some kind of most enter size (although probably