I can't quite put my finger on it, butt something smells funny about this.
I think people should use different password classes. One only for forums, one for webmail, and one for financial and bank sites.
It works for me!
But really, banks need to support U2F Fido NOW.
Biting the hand that feeds IT
