At my previous job I remember a guy who didn't like doing this. He convinced his manager to get the security policy changed for his department. The policy was that the pw had to be min 8 characters long, have 1 upper case, 1 lower case, a special character, and has to be changed every 30 days. Your account would be locked after 3 incorrect tries. He convinced his manager to have it changed to pw has to be 6 characters long. Never have to reset it and not lock limit. Hmm I protested but his manager insisted, went over my head and forced me to have it changed to that. 3 months later his account was hacked. His pw was loveme. By the way his department was billing and about 40 company credit cards where stolen before I found the intrusion and locked his account. Now the security policy makes the origional one look like a cake walk. It's tough being an IT guy, dealing with users.

Some companies take money for their budget and it goes to another teams budget when you request something. At my previous company the IT ream made the most money but offered no product. The call center lost money for the company but was the only product the company offered. Its a stupid way of doing things but it keeps the help desk from asking for 200 pw resets at $20 a pop in one day. I instituted that policy because every group in the call center would have a few employees that would lock their account when they saw i left my office so that they wouldn't have to do work. When the supervisors find out that it was cosing them money everything this happened they slammed the employees for it.

I found a female programmer a few years ago in college and married her LOL.