I don’t know if this needs to apply for home users, but in any case, its something I’ve never read before. If you’re on a NT-based network, with NT-based clients, this article is should be something you should definitely read. It was writen by Robert Hensing, senior member of the Microsoft PSS Security Team.
So…are my random 8+ character passwords still okay? I use random letters and numbers for websites and forums I frequent. Somebody give some peace of mind by leaving a comment while I change my two Windows XP machines here at home to pass-phrases. 🙂