Change password hashing from SHA1 to bcrypt

[FroMage]

Apparently SHA1 is laughable in case the DB gets hacked. We should use bcrypt I heard. Since bcrypt handles its own salt we can get rid of our salt column. There's a Java lib for that.

[FroMage]

http://crackstation.net/hashing-security.htm has some useful info

[FroMage]

Fixed!

[tombentley]

I hope you didn't go adding any backdoors while you were at it

[FroMage]

Who needs backdoors when the front door is wide open?