[speeder]

In my head =D

At first I used one password for everything. Then two, but that was a accident (ie: I forgot to change one default auto-password but got so used to it that I started to use in other places).

Then the first one was cracked. I changed passwords in lots of places, and started to use 3 passwords total.

As this kept balooning, I decided to instead create rules for my passwords (rules that only make sense to me, of course, they are totally arbitrary and almost random).

The result is that I have now about 20 different passwords, but I can remember them all with enough effort. Sometimes there are a random site that I don't used in a while that I cannot login at first, but as I try several of the possible variations of my rules, eventually it work (erm... or not :P this had happened a couple times already, and I needed a password reset).

My associate use lastpass.

[brandoncor]

Did you find out who cracked it? And how did you find out? Just curious if you were targeted specifically.

[stevekemp]

I had a password exposed via a compromise/dump of the perlmonks.org website a year or two ago.

That didn't bother me since I use per-site passwords, stored in a pwsafe database. But it is an example of sites compromising passwords.