diff --git a/kfet/backends.py b/kfet/backends.py
index 6f917310..62b2d820 100644
--- a/kfet/backends.py
+++ b/kfet/backends.py
@@ -18,8 +18,8 @@ class KFetBackend(object):
             return None
 
         try:
-            password_sha1 = hashlib.sha1(password.encode()).hexdigest()
-            account = Account.objects.get(password=password_sha1)
+            password_sha256 = hashlib.sha256(password.encode()).hexdigest()
+            account = Account.objects.get(password=password_sha256)
             user = account.cofprofile.user
         except Account.DoesNotExist:
             return None
diff --git a/kfet/views.py b/kfet/views.py
index 0d6e2901..f2f98f8f 100644
--- a/kfet/views.py
+++ b/kfet/views.py
@@ -319,9 +319,9 @@ def account_update(request, trigramme):
                 if (request.user.has_perm('kfet.change_account_password')
                         and pwd_form.is_valid()):
                     pwd = pwd_form.cleaned_data['pwd1']
-                    pwd_sha1 = hashlib.sha1(pwd.encode()).hexdigest()
+                    pwd_sha256 = hashlib.sha256(pwd.encode()).hexdigest()
                     Account.objects.filter(pk=account.pk).update(
-                            password = pwd_sha1)
+                            password = pwd_sha256)
                     messages.success(request, 'Mot de passe mis à jour')
 
                 # Checking perm to manage perms