2011-08-10 14:10 - GeneralThank you XKCD for explaining this well! I have, personally, started to convert to passphrases (groups of random words) rather than "passwords" as well.
When possible. There's a lot of crappy services out there that require "strong" passwords of 8 characters including lower and upper and special and ..... otherwise impossible to remember, but easy to brute force.
The only disadvantage of passphrases (that I know of) is that, given the attacker knows or can guess that it is in use, it's much easier to shoulder-surf.