You should ofc 'salt' users passwords in advance of hashing them to prevent with the ability to Get better the original password from the hash. $endgroup$$begingroup$ As hashes are fastened size, does that mean that regardless of whether not specified when creating the password, all login programs would need to have some sort of greatest enter leng