sure, rainbow tables can crack a 14 character LM hash in 120 seconds - but
for people with real operating systems....

cracked a 6 digit FreeBSD MD5 password by brute-force in 7 days, 6 hours and
change - using John the Ripper on an AMD Athlon 64 3200+ (about 5700 checks
per second)

pswd was lowercase, alpha-numeric -in essence, weak.

password rehashed with Blowfish, re-running test - should take about 15X as
long... time will tell