These topics resurface every few weeks....its like the paranoid vs the smug.

If you understand the risks and issues and chose to do things differently, then fine. If you chose to build a RADIUS server and use a RSA token just to check your Netflix account, then that is cool too.

The OP asked about how to be secure in certain situations and there are several good answers on this thread.