This comic from xkcd illustrates this study's findings on passwords and humans. Basically, you're doing it wrong. On a side note, to anyone who wants to hack my facebook page: my password is now CorrectHorseBatteryStaple. (Via)
Oh right, because in all my years using the internet I *haven't* yet learned not to type my password into random websites. Good job, howsecureismypassword.net. You've created a valuable resource that no [intelligent] person will ever use.