But on a serious note, it's possible to individually salt passwords, and still match username & password in one query.