> How are the passwords stored in the database? It looks like an MD5
> hash without a salt. We're attempting to migrate from the internal
MD5 itself doesn't use a salt.
And RT doesn't add one.
RT::User_Overlay.pm ...
my $md5 = Digest::MD5->new();
$md5->add($password);
return ($md5->b64digest);
-R