Nope, I said stupid password restrictions. A good password restriction would be one that only measures the entropy. The idea that we should use no more than 8 letters, alphanumeric with symbols is stupid and demonstrates ignorance with how hashing works.