Re: No more iPhones, check.
...they don't have the passwords, just the hashes, if they are doing it right.
On a practical level, these two are equivalent for the resources a government can throw at the issue. An entity with that level of resources should be able to create rainbow tables for all service providers. Happily (as long as you are not part of one of those entities), this is not the way it works. Hashes are stored locally and different user accounts have different salt applied, which increases the number of combinations needed to be taken into account for rainbow tables to work. They can theoretically still work, but don't provide much benefit.
REF: https://packetlife.net/blog/2008/jul/09/a-bit-more-detail-on-ios-password-hashes/
Biting the hand that feeds IT
