I believe that it was GA here that was first to have shown the security concerns for OpenID around here. Not sure, but I've seen concerns.

I used to rotate my password - non-dictionary, complex (uppercase, lowercase) with at least two special characters - once per 120 days. I just rotated and since last year have done so only once per 180 days.

You guys just prompted it today for all but my throwaway accounts.