Totally agree.

My own strategy rather than using a password safe is that I have a fixed random-looking collection of capitals, numbers and symbols (which is actually memorable to me) into which I then incorporate parts of the name of the site I'm logging in to (should that be "in to which I'm logging?").

Again, it may not be perfect, but it would be very difficult for a human to get from one of my passwords to the next, and even harder for a machine.