[Release] Weak Password Warning

[TheSpidey]

This tool goes through the accounts table, goes through all accounts with valid emails (That are like *@*.*, meaning [email protected] will be valid, even if non-existent), analyzes their password's strength (using my password analyzer, previously released only in the shared lounge), and finds the average strength for the accounts.
(So, if you have, say, only 3 accounts with valid email, and their scores are 100, 10 and 40, average is (100+10+40) / 3 = 50, meaning the second and third accounts will receive their email, because their scores are lower than the average)
Note: If the average is lower than 50, the program will consider 50 as the average, because anything lower than that is considered a very easy password.
Then it goes and emails all accounts with password score lower than the average, this message:

(All names / urls can be altered in the conf file)

It also generates a stats.txt file with account names and strengths in tsv format (Tab Seperated Values) so you can generate reports / graphs / whatever later

Download: Weak Password Warning

Just edit the conf and run it, it should start sending out messages in no time.

Edit; For those of you who don't have a password changing page, here you go:
passreset.php: http://pastebin.com/f46776ac1

[Power of Illuminati]

Real nice program, +Rep

[Cursed]

+Rep for Spidey!

Edit: Damn, I gave out too much in the last 24 hours :/

[Greeko]

Hihi m8 very cool +Rep from me if i can

[мιяаgє]

Another Spidey-rific release! +Rep
Edit: Gotta spread it around..

[TheSpidey]

Here's a password-changing page, in case you don't have one already:

passreset.php: http://pastebin.com/f46776ac1

[z3ro379]

can it detect weak passwords if the password is decrypted (like the newer rev´s. of acent (md5 hash or something like that) ) ?

[TheSpidey]

You mean encrypted. No, due to the nature of hashes, you can't* find the password given only the md5 hash.