Security passwords are ok on the front end, but in general they suck.
Heres for example, how many times have you had to choose three security questions from a drop down list, come up with a seperate answer for each. And then been screwed over a year later when you cant remember what questions you answered and thus get locked out of an email or website account?
Worse look at gmail security. To get access to an account you get locked out of in one of the many ways... ie you create the account on your home PC, and then when you log into the account on your nifty new cellphone... youve created a security issue that locks you out of your account until you can provide the exact date, hour, minutes, and seconds that appear on the sent/recieved slot of the "thanks for creating a gmail account" email they send when you create one.