As far as I know the statistic is still true that the safest is to write down your password and keep it safe physically. At some point there used to be paranoia and it was "bad practice" to do this, but seriously, which person breaking into your house is not only going to take/read something like that, but see it beyond anything other than chicken-scratching...
My source for this info is QI
While lastpass does intrigue me, I get turned off at the very mention of "cloud-based".





