The only thing that bothers me about lastpass.com is that it is sort of the same problem as E-mail, except instead of all your accounts registered with one E-mail address, now you have all your passwords stored in one database (at lastpass). According to Jeff's previous posts, if you're using a very strong password at lastpass, then perhaps you don't have much to worry about (since if their DB was stolen, it would supposedly take years to hack a strong password). Unless someone's installed a keystroke sniffer on your PC. Or someone discovers a vulnerability in lastpass.com's encryption.

Our company uses slotted metal diffusers fitted on every fluorescent fixture in our work areas, that direct the light mostly straight-downward. The result is zero reflections on our LCD screens, and plenty of lighting.

Unfortunately, there are 2 words that can bust this dream, just like any other "secure" password mechanism: keylogger malware. You either have to intially sign into your browser, or the "cloud" identity store at some point (think public terminal browsing), and then you're still vulnerable to man-in-the-middle attacks for stealing your online identity, which has suddenly become much more dangerous because your bank account, 401K login, etc. are all tied into the cloud identity store, so once that's cracked, you're toast. At least with separate passwords, you might be smart enough to protect your bank password more vigilantly (i.e.: don't access your bank account from a public terminal). That said, I agree with the initial premise: password proliferation on the internet is totally busted and in need of urgent help.