I was surprised that this thread receives so much attention, considering when I go to my profile I see
in reply to OpenID Now
in thread Status of Recent User Information Leak
"Change password: Note: Eight (8) characters max!".
I thought it was strange that when you perform a text search for '', but this is all you find on it?
For example, considering the enormity of this thread, why not further enhance the security posture, perhaps with something like this regular expression, extended password policy, which might fit into the modular user authentication system?
I certainly appreciate these proactive security breach notifications, but I vote to please enable unimpeded view of the monastery gates without this diabolical banner, innocence is bliss. Thanks!