re: #57 Charles Johnson

Yes, that was a flaw in their security, no doubt about that. However, if you use a very strong random password (more than 20 characters, mixed with numbers and symbols), not even a brute force dictionary attack will be able to crack it.

What do you think of the classic method advocated in this xkcd cartoon?

It got me thinking about checking entropy, if nothing else:

cygnius.net
rumkin.com
passwordstrengthcalculator.org