I think it's about time that sanitize_user() allows '.' and '@'.
WordPress is being used more and more as a CMS and the need for registering more than one user is getting higher.
In such cases many would like to use the e-mail addres as username.
Will this ever be considered for future releases?