People's knowledge tends to be decades out of date, even techy people.
Last time I checked 10^14 hashes per day was well within reach of one individual. This changes the rules completely. Rainbow tables go out the window. The state of the art is pattern analysis.
Turns out people are so predictable when it comes to substitution, if told to add a number or punctuation they'll append it. If a capital letter they'll prepend it 95% of the time on a distribution distribution.
You'd better hope your provider has stretched your password using PBKDF2/bcrypt, otherwise your efforts could be for naught.
Personally I'd go for horsecorrectbatterystaple (diceware style picked cryptographically randomly from a world pool of 60,000) but with 5 words instead of 4. Either naked, or as the root of a Merkle tree, using either base64 or base85 compressed leaves as your actual passwords.
Write your own password generator, then you can re-write it in any language with SSL bindings, from memory.