Ok, so I used to be one of the people that "found" the usernames and passwords to most of your sites. But then I decided to take a job as a security consultant and change my ways. So I have decided to help you webmasters here on GFY and answer questions, give tips/advice, etc. on how to stop/limit pass crackers and your site's vulnerabilites. No strings, no catch, no charge; let's just call it an act of redemption.
You can post here and I'll help you however I can....