Index: wp-admin/js/password-strength-meter.dev.js
===================================================================
--- wp-admin/js/password-strength-meter.dev.js	(revision 18543)
+++ wp-admin/js/password-strength-meter.dev.js	(working copy)
@@ -1,6 +1,6 @@
 // Password strength meter
 function passwordStrength(password1, username, password2) {
-	var shortPass = 1, badPass = 2, goodPass = 3, strongPass = 4, mismatch = 5, symbolSize = 0, natLog, score;
+	var shortPass = 1, badPass = 2, goodPass = 3, strongPass = 4, mismatch = 5, symbolSize = 0, natLog, score, rPassword;
 
 	// password 1 != password 2
 	if ( (password1 != password2) && password2.length > 0)
@@ -14,6 +14,12 @@
 	if ( password1.toLowerCase() == username.toLowerCase() )
 		return badPass;
 
+    // password (even 1337 passwords), should always be bad
+    rPassword = new RegExp( /p[a|4][s|5]{2}w[0|o]rd/i);                                                                                                                                                   
+    if( rPassword.test( password1 ) === true && password1.length < 25 )
+        return passwordStrengthResults.badPass;
+
+
 	if ( password1.match(/[0-9]/) )
 		symbolSize +=10;
 	if ( password1.match(/[a-z]/) )