In reply to http://bugs.dragonflybsd.org/issues/2427 I have to ask why SHA2 is used at all. Why isn't bcrypt or scrypt used instead?