Re: For best results, use a password generator that can give you a long, random string"
Thant sounds great ... but who produces Keepass (to use your example)? Where are the passwords stored? Can the database accessed online? Is the database protected by a single password? Why should I trust a single company with *all* my security when I have no knowledge or control of that company or their security processes? For all I know they may have a massive online database with a master password of "password" to open everyone's systems when the ransomware company that runs it decides there's enough data to make it financially viable ... (I'm not suggesting Keepass are actually involved in ransomware, just that with limited user knowledge, they *could* be and I'd be none the wiser.) Before the suggestion that I'm being paranoid, try looking at nearly every crypto investment or pension fund fraud conducted by the "reputable" companies that run them, without the knowledge of the users of those systems.
In essence, who polices these "trust" companies?