Recently I've been spamming colleagues with nuggets, that should have been on here, so I'm going to start cross-posting from now on.
And with no further waffle, here's today's first nugget:
Karl Seguin has posted a neat little article on password strength - no rocket science here, but it's one of those things that's well worth re-stating to remind us as developers that we should always strive to meet or exceet best practice. And it's amazing the sites that DON'T require strong passwords.
A worthwhile read: http://codebetter.com/blogs/karlseguin/archive/2008/07/30/password-you-re-doing-it-wrong.aspx