Bitcoin Forum

Just wanted your thoughts.

Yes (at least it added to my resolve to improve my security measures),

This was the first time I saw my user name and my hashed password online in a leaked document.

Lucky for me I stopped using the password that I used there just recently so no other accounts were in danger,
but I am reviewing my passwords and computer security now, to see if I can improve it.

I was already reconsidering my computer security after the theft of someones wallet.dat file but now I also look into how I use website passwords.
(If only my bank allowed a password that was more complex then between 5 and 8 character with only [a-z][A-Z][0-9]  then I would be more happy ;) )

I would recommend a good password manager.
My suggestion is LastPass (see https://lastpass.com/ for details). Another one is KeePass (see http://keepass.info/ for details).

LastPass and KeePass have passwords generators. LastPass can let you set how many characters and what the characters can be be.
e.g., You can have LastPass generate an 8 character password that consist of random things from the following list: [a-z][A-Z][0-9] which could like this: 7Vv7638z (I use LastPass to come up with this).

I assume you can do the same with KeePass (I don't use it). From what I can determine, Keepass lets you have more control. See http://keepass.info/help/base/pwgenerator.html for details.

I (like you) wish I could be more happy your bank.
I like that they have a lower limit of what your password could be (I think it should be at least 9). See http://project-rainbowcrack.com/table.htm

It causes me a concern about the upper limit. Why a upper limit if passwords are not stored in plain text (plain text is bad)?