Hi, yes, it sounds good. Anyway we have an encryptionKey, which should be mandantory while install (may be create one from url as default), this can be used for encryption too: md5(password + encryptionKey) so it should be unique for every install instance. vg Steffen