first of all we should all understand why we need good passwords. which is really easy to explain actually. lets say for instance you use the same easy to guess password everywhere. lets say you register at ebay and at some teenagers website with really low security. all is fine and dandy in the world until some dude comes along and realizes the teenagers site has potential mysql vulnerability - so hes injects it and gets all the encrypted or nonencrypted passwords. if your password is encrypted and easy to guess he will probably get it cracked in a few minutes.