Comment Re:News at 11 (Score 1) 553
You don't need to be "hacked" to have a keylogger attached mr boatman (or may I call you sweaty?) You just need someone to get a job as a janitor (see the relevant article in 2600). Keyloggers come in hardware these days, and that includes the last 15 years. That's where stuff like OTP and friends come in.
And as for password aging, our friend below is not alone in writing his passwords down. If people have "secure" passwords generated weekly/monthly/daily they're going to put them on post-it notes. If people have memorable passwords that are secure against a dictionary attack (it's possible my friend) then that's as much as you can do. Oh yeah you can ask "Doreen from accounts" to use KeePass to store her passwords, but it would be far simpler to go for a big piss in the wind.