I know that v5 requires SHA256 hashes to send passwords but does anyone know how the passwords are stored? Encrypted? If so what is the encryption?
We have different usage scenarios, so some password are hashed, some are encrypted.
User passwords (those you use when logon to the GUI) are hashed SHA-256
Monitor credentials passwords are encrypted using AES-256 (counter mode) with a per installation generated key.
Part from being encrypted on disk, all passwords are also encrypted while in memory, only being decrypted when they are used.