> Has anyone done this in Zend Framework yet? Yes. Salt is stored in an application file, which is stored outside the web root of apache.
Instead of using 'setCredentialTreatment', I just perpare the salted md5 before passing it to setCredential. -- Eric Marden
