please have BB set password policy requirements so that users are not able to recycle thier previous 12 passwords. Also that they can not reset thier password no more than 1 time a day.