Quote Originally Posted by Lycanthrope View Post
The only time I have a password shorter than 100-characters is when the site the password is for itself limits it.
Yes, it's annoying when websites do that. I have an account on a website where I was once allowed to have as many characters as I wanted, and then they lowered it to a 12 character limit and you now have to use letters and numbers only (no special characters allowed). I know I'm right in saying that this wasn't the case before because I can view the password history for the account in LastPass.

I don't go for 100 character passwords though. I would tend to agree with Hiro who claims that's a bit overkill, but I do think however one should have passwords with more than 10.

If you don't like the idea of storing your passwords in the cloud, there are alternatives, like the awesome KeePass. These keep your data out of the cloud, but make it more difficult to access your passwords on anything but your main computer—which is a huge blow to convenience. Unless, of course, you sync them with Dropbox, which defeats the whole purpose of using a local password manager. And remember, if someone has physical access to your computer, they can still get your password database that way.
I considered using KeePass, but there is the issue of it not being very compatible with browsers, like LastPass is, which does mean points off for convenience. But there is another reason on top of that: it's because KeePass downloads seem to be hosted on Sourceforge, and I don't touch Sourceforge nowadays after they were exposed for bundling spyware with some of their downloads. Don't know if this applies to the KeePass download, but if it does, that's pretty bad. Just think: you imagine you're protecting your accounts and yet when you install the program you could potentially be compromising your PC and by extension your accounts as well.