(no title)

1. It does not appreciate the significant risks of using online password services, listing keepass last and calling it's interface "clunky". KeePass should be the first choice in the current marketplace. 2. It does not cover expiration dates at all.

Some might disagree about issue #1.. but Issue #2 is a big one. The linkedin and dropbox hack showed that crackers are patient. Anyone who wants to contribute by writing more articles like this (please do!) should emphasize the importance of expiration dates.

also, I disagree that the "key + password" method is nerdy at all, or too much for 'general audiences' to handle. People need to grow up, and we need to encourage them to handle new technologies like adults, rather than treating them like children who can't handle the responsibilities.