With PBKDF2 being deployed, if and only if it seems to be working OK for a short while, we should reset the user tokens of users with MD5 hashes, thus forcing them to re-login and update their hashes. (We can also do this in batches to avoid a massive number of simultaneous hashing being done.)
Version: wmf-deployment
Severity: minor