The problem with online STRENGHT test, is you are now posting your "Strong" password to the outside world.
Not saying that this site in particular will do anything with it, but just remember, if you have to ask someone if your password is good, you just reduced its ability to be strong.
yup i did post about that with the MD5 generator sites, i am not saying all are currupt, but have you ever thought who owns the MD5 cracker sites and how they get the passwords?
9 sounds good. i use 16 myself :P
here's a pass strength meter, if someone wants to check his password: http://www.passwordmeter.com/
Not saying that this site in particular will do anything with it, but just remember, if you have to ask someone if your password is good, you just reduced its ability to be strong.