btw: dont forget a salt if you roll your own based on a hashing algo or crypt(). It makes it much more difficult to brute force.

-Waswas