Go the the middle.
My favourite is psudo pronounceable non words.
My goal is to resist casual hacking in the work place, but keep the password in my head. I adapted some VB code to JavaScript for my companies Intranet for this.
The result is not suitable to ultra secure systems, but is plenty good enough for my domain admin account.
Typically an 8 char password would look like DiboGen7. Once you have the pronunciation in your mind it is surprisingly easy to remember. Using simple rules you can create passwords of any desired length.
A quick google will find details on this system, it is working very well for my company.
At the end of the day it is only worth securing password enough, any more is a waste of effort, take more care with your bank password than your facebook one.
