Replacing the default hashing algorithm


I need to be able to replace the way passwords are hashed and atm there is no such easy way.
There are both security and commercial advantages to this: from a security perspective, people can easily replace the default with something else (fi using the Crypto package from TMS) and commercially, again, the crypto package from TMS sounds like a good complement that you might use.


It would be good to have PBKDF2 and/or BCrypt built in, and also the ability to set the number of hashing iterations to use.