Passwords that are not long enough, or that are words in the language of the clients, make the above attacks even easier by reducing the key space even more.