recently, I discovered, that I have to re-set my password:
What is the reasoning for this?
As a user, I can not remember a trillion passwords that may rotate or not.
Of course it's bad practice to have the same password on different sites but it's probably a worse practice if I keep a book with all my passwords with myself that I need to update every now and then.
If I don't want to keep a book with passwords or a password manager and I want to keep my old password, I'll probably add a number to my password and increment it every time.
All I want to say is that password rotation is nothing but pain for the user.
It's more interesting how you guys store my password, what hashing algorithm you use and if you salt it or not.
(I didn't check if d3scene forces you to have a special complexity for your password which would be equally bad as password rotation)