remove password strength requirement
I'm updating an old site and have converted the plain text password to sha(1) [though I see this is now 'crackable' and I'd like to know which is better!].
I have run the SA wizard for the register/login/forgot/userupdate pages and selected sha(1) encryption for the password field.
However, when I go to log in, it won't grant access unless the password includes at least 3 letters and 2 numbers. Given that the old password didn't have this requirement, how can I remove it from the new pages so that users can still log in (to be advbised that they should change their password)?