Allow similar passwords when changing them.
You annoy us with e-mail because YOU, Yahoo!, compromised our data. (Or was that AT&T or whatever company ownes you this week?) So, when I voluntarily go in to make a change THAT I CAN REMEMBER to my e-mail password, you reject it because it's too similar, even if it's different, to the one I had previously...you know, the one that was secure for almost TWENTY YEARS until you messed me up. You're sending me messages you're stopping login attempts. Good. If someone is trying to log in, and it's not me, and it's from a device I wouldn't use, stopping them is wonderful. But, you've already inconvenienced me enough by handing out my information because you're careless...how about letting me make the changes to the password I choose to make, if I'm making them at all? Do you not trust me? And, seriously, who should be trusting whom?...the user with simple needs able to keep his private information private, or the giant corporation who wants to play the victim card when it let my information loose to be abused?