Google mandates longer Apps passwords
How much difference can two measly characters make? Plenty. A quick test with a few different combinations over at How Secure is My Password bumped the time-to-crack from 8 seconds (6 characters) to more than a day. That's a substantial difference, and it's nice to see Google enforcing the 8-character minimums.
If you can handle something longer, go for it. You're only going to make things harder for the bad guys, after all. A bump to 10 characters pushes your time-to-crack to about 10 years.