Salt or no, if you’re using a general-purpose hash function designed for speed you’re well and truly effed.

bcrypt Solves These Problems

How? Basically, it’s slow as hell.

An interesting topic I've been studying recently: how to build a secure password storage system. This is an important component of that, i.e. use slow algorithms.