I tend to use a composite key for passwords so that it works over multiple sites.
Generally the requirement is for Capitals, numeric and symbols.
So what I do, is have a master password - eg "ExtremelyHardPassword"
Then I would follow up with a unique identifier for the site / app based on its name - eg for NZ Herald, I might use "NZH"
Following that, I might use a master end string. eg "#14"
So my complete password would be "ExtremelyHardPasswordNZH#14"
For another site, such as Geekzone, it would be "ExtremelyHardPasswordGZ#14"
That way with multiple sites, I only need to concentrate on getting the unique identifier right.
Any real flaws with that concept?