An interesting article here regarding password security.
Frankly, for all those websites that want a login simply to keep statistics, I use the same password.
I really don’t care whether someone logs into some-newspaper-or-other-dot-com as me. The odds that such a person would do that and then do bad things (like what? leave nasty comments about news stories?) are incredibly slim. No, the bad guys are not interested in reading the news.
For websites that matter (like my bank and this one and a couple of others) I use strong passwords. And I keep them written down someplace entirely other.
An excerpt from the news item:
“The security strength of a password is directly related to its unpredictability (from the attackers point of view). If the password is a word in the English language then it’s more predictable than random characters. If it’s a word relating to you then the more the attacker knows about you makes it more predictable.”