Apparently, there's a pretty significant security hole in almost all current routers. Read this for details. It's old news (the hole has been around since late 2011), but it's important and I didn't know about it so I figured other people also might not.
I find it hard to see why the standard would be so stupid as to verify two halves of the password separately. I guess this is a case of disconnect between people working on the higher-level vs. the lower-level implementation of the standard?
I suspect Rym and Scott probably know about this already and mentioned it on the podcast, but I just found out about it and I didn't see any mention of it on the forums so I thought I'd post it.