I guess the problem is such people will mostly use passwords that are as weak as they can get away with.