Registration and login should be password less anyway. There's alredy tech for doing it with cellphone or external hardware key. Storing your password hash is just stupid and insecure