0x000000 Security (cool URL, btw) conducted a little experiment that clearly shows once more that passwords should be eliminated as soon as possible.

Successful use of passwords relies on the people who know the passwords to choose them wisely and keep them to themselves. Obviously, it has been shown over and over again that any scheme that relies on people is doomed to fail, and 0x000000 Security just illustrated this again.

Even though there was something phishy about the site, I did sign up, and yes, I did use a very easy to crack dictionary password, which I do not use anywhere else. Long live my gnupg-encrypted file of password that I do not choose to remember (yes, the key file is on another medium).
Anyway, interesting reading.