I originally used it right off the bat, but then I had to define the password length in the SQL database a 9 characters because of the minus character. I decided to make it unsigned so it can be 8 characters. I also prefer upper case hex so I made that as well. xD
I'm still thinking about maybe using crypt. :/ It's definitely safer and the algorithm used in crypt is known. But I can't remember anymore why I decided not to use it. I know exactly that I had a very, very good reason (except for complete database corruption and the need to register all accounts again or give everybody new passwords).