Mark & Juanita wrote:

yep those password policies really
helped improve security, didn't they?

One client of our has insane IMO requirements: 15 characters, must include
at least a number and a special character, and NO WORDS! Usually for
requirements like that I'll use the dictionary technique. Open a thick
book, use the first word I see, open to another page, use the page number,
open to another page & use the first word I see, etc. This client's policy
wouldn't accept e.g.
banana48file62uses323/count
because it said "banana" was a word!

However, a password of this form is blessed. g
aaaaaaaaaaaaa1/

-- Mark