12.04.2014, 11:22
Tell them to becareful when pre-hashing because some sites actually store the hash and the original password. They'll probably even have a decrypter somewhere. That's why password reset via email is the best way to go.