you can change the spry validation requirements by editing the following code on the login page:
var sprypassword1 = new Spry.Widget.ValidationPassword("sprypassword1", {minChars:6, minAlphaChars:1, minNumbers:1, validateOn:["blur"]});
minChars:6 - setts the minimum passsword length to 6 characters
minAlphaChars:1 - sets the password to require at least one letter
minNumbers:1 - sets the password to require at least one number
you can change these settings to fit the existing passwords.
You will also need to adjust the server validation settings.
This line setts the minimum length to 6
$WAFV_Errors .= WAValidateEL(((isset($_POST["userpassword"]))?$_POST["userpassword"]:"") . "",6,50,true,2);
this line requires at list one number:
$WAFV_Errors .= WAValidateRX(((isset($_POST["userpassword"]))?$_POST["userpassword"]:"") . "","/[0-9]/",true,3);
this line requires at least one letter:
$WAFV_Errors .= WAValidateRX(((isset($_POST["userpassword"]))?$_POST["userpassword"]:"") . "","/[a-z,A-Z]/",true,4);