Greg Hughes blogged about how he started using passphrases.

After reading Jesper Johanssen's articles (here, here, and here) on the subject, I too have started replacing my passwords with passphrases.

Greg makes a good point that they allow you to have a much more secure password that, perhaps surprisingly, is actually easier to remember.

I wonder if this will make it into Microsoft best practice any time soon?

If this is of interest, follow the links above - there is plenty to read and it should keep you going for hours.

UPDATE: Susan Bradley also has a piece on passwords and passphrses from an SBS perspective.