If an intruder can access your source code, on your server, your _real_ problem is not the way you store your passwords.