I still think that the extreme's they're going to is a joke.
The minimum length, mix of upper and lower, mix of numbers, even had some that say must have at least one symbol, such as @ - $, and another that said the same letter can't be used in a row.. even if it was capital then lower case.
Though we don't have to have different passwords for each system.
The ones that really irritate me are the ones that impose all those restrictions, and then a maximum character limit on top.
"Must contain numbers and letters, mix of upper and lower case, 6-8 characters, must be changed at least 6 times per year and you can never reuse an old password." I actually had to use that policy once...