[im]

Quote:

Originally Posted by VincentDunn But there is a difference between intercepting the query Код: SELECT * FROM `users` WHERE `pass` = sha1('fuckme123') and Код: SELECT * FROM `users` WHERE `pass` = '0FDF715A80C43F6603E8B8EC9676A45AD18AD8773BDE840F04D65A10157547EA05A67C0BE2F5990151EE9B7D7901C1523375CEE43E51EB7A48F25C712A05240C' Personally, I'd rather have a hacker get a hold of the second one.

How the hell would a hacker get to see your queries?

To encrypt a password using anything, you first have to get the playn text password and then encrypt it.
With WP is:
WP_Hash(escapedPassword, sizeof(escapedPassword), plaint_text_password);

If someone gets access to your server and is able to view the queries, he will also be able to save the passwords before them being encrypted with WP.