My take is that they don't track you for fun. They track you to sell you shit. Most people buy what they see in ads and believe fake promotions so this is a good business model.
Best way to stay out is not to hide absolutely everything. It's to block ads and don't buy so much stuff. Obviously don't give out data you don't have to, block trackers, use privacy tools. But don't feel bad if some data gets out. You will never block everything and a lot of it is not that important if you're not playing the game.
Dental is tricky in many countries. It's delicate, easy to go wrong and very often painful. In Poland I used to do simple things like fillings using public insurance and I've heard many times that I'm crazy and for sure they will fuck it up. I think it's simply because it's it expensive and will go wrong people will think it was inevitable. But if it's free and goes wrong people will say it's because it was free. So in my experience even if public insurance covers dental people tend to avoid it.
That's not easy. I mean it's not that hard computationally but you're talking about very specific attack requiring some dedicated tools. Real life you would have two scenarios:
You trying to break into my specific account like gmail. This will not help you because they will rate limit you, use captcha and eventually just block you.
You have a leaked list of thousands/millions password hashes and my password is among them. Hackers would just use existing rainbow tables. They will not think 'hey, maybe some of those passwords use song lyrics, let's check'.
This would be bad pretty much only in the very specific scenario of hackers trying to hack my specific account and having leaked hashes of password for this account.
Still I wouldn't really use this method. I'm just saying it's better method than some printed card generating short alphanumeric password.
True story: some newspaper in Poland organize a competition for the weirdest name. The guy who won had last name of 'Zyc or Cyc' (in polish, of course). Basically when his grandfather was registering his name some guy couldn't read it or something so he put 'Zyc or Cyc' and it stayed like this in the documents.
According to this guy when police would stop him and try to write a ticket they would get confused and ask him which one was it? He would say that maybe they shouldn't write anything because their boss will they they're stupid or something. They would usually let him go.
Crack how? With 4-5 words you're going to have a pretty long password so bruteforce is out. Do you mean that if you will have one of my password you will have the rest? That's because I gave you obvious example as a joke. What if my password is TakePicturesOfYou. What other password are possible? How will you crack them?
In my experience LSP actually consumes quite a bit of resources. I'm using nvim with LSP and it's definitely not tiny percentage of what other IDEs are using. The editor is light, LSP is not.
Better idea: memorize lyrics to a song, for each website choose a different starting word, use 4 consecutive words as password. You only have to remembered one number per page, you don't need to print anything and you can have longer passwords.
How am I supposed to know it's the same guy? I call BS.