Was there actually a password requirement change? Entering the first 15 chars of my (previously set) longer password actually works. I assumed they were not properly validating (and truncating) the input. In any case this is not confidence inspiring.