The password column in the editor table should be converted to be a MD5 hash that conforms to the HTTP digest auth specification. We should use this catalyst module for authenticating our Web Service use auth:
since that method will allow us to use simple digest auth for the web service. Aside from the web service, all the user login/password changing functions need to be updated for use with MD5 passwords.
This was bug #157 in trac.