I dare you all to read the whole thread….

Anyhow, the new algorithm should provide total protection against Rainbow tables (i.e. pre-computed tables) since there’s a 6 byte random salt for each password, though obviously a weak password can still be cracked by running likely passwords through the hash algorithm.

Also, note that the patch includes a new script to general via the CLI a hash for a given password, in case you need to go into the DB and change a password to a known value.