[VonLipwig]

My most secure passwords are for Twitter and Facebook. I don't really use either anymore but I don't want to delete them as they contain some history.

The problem is that both position themselves as one login for tonnes of services. I do use Twitter to auth into services from time to time. This is why a strong password is important for these. An attacker could get into your account then cause some serious damage to your reputation both amongst your friends and to the outside world by authenticating themselves into one of the million services and acting like a prat.

I know that one of 3 passwords is compromised. All of my friends know it. Even some of my friends of friends know it. So far I haven't noticed any of my accounts being abused. If anything I have noticed friends using it as their memorable password :)

[Jd]

I agree, there is cause for some to be concerned about a "reputation damaging" attack. For most of us, however, this would be an annoyance and mere blip in our social presence. Also, what I mentioned is that there is not much incentive for anyone else to spend a lot of time and effort damaging my reputation. What would they get out of it, especially if the perpetrator remained anonymous?