I'd like to request/suggest you do away with the 180 password re-use limitation. Forcing people to pick a new password is just a recipe for forcing them to always pick a new password since they (me) wont remember it and will use the password reset, at which point they'll have to pick a yet even more obscure password which they'll (me) forget, forcing a password reset ... etc etc