Enable password hashing with salt & pepper

The passwords should be stored salted, peppered & hashed.

Preferably, information about the password hashing should be stored such that the hashing algorithm can easily be replaced later on without breaking the login credentials of older users.