There are similar programs available for PDAs, which I vastly prefer to keeping it on one computer. Not just because I have near-complete control over physical access to my PDA, but also because I have to move from various systems throughout the day, and need something that can be kept with me.

----
I wanted to explore how Perl's closures can be manipulated, and ended up creating an object system by accident.
-- Schemer

Note: All code is untested, unless otherwise stated

A PDA is definitely a safer way to go. If it ever gets "hijacked" in any way, you're probably not going to ever see it again, so snooping software is not a big concern. On the other hand, simply using the Password Safe program at all renders you vulnerable to a known ciphertext attack. I don't know anything about the particulars of the algorithms it employs, so I can't comment in any greater detail. Even your setup would still make me a little worried, but I'm way more paranoid than most people, though not for any particularly good reason.

I actually like to use my PDA to carry around a list of SSH key finger prints, so I can verify that when SSHing into a machine for the first time that I'm not having the connection hijacked via a packet rewriting attack. Of course, I'm hardly ever on a computer where a key isn't already cached, as I refuse to type in passwords at other people's computers. Typically the need only arises when I build a new machine, or rebuild a machine from scratch, wiping out the list of cached host keys.

The only effective attack against my fingerprint storage and verification mechanism would be to generate "fuzzy" fingerprinted keys, i.e. ones that had fingerprints very close to mine, put those on a machine, and not only hijack my connection with packet rewriting on some router, but also to momentarily steal my PDA from my pocket and rewrite the file that holds the fingerprints. This seems ridiculously implausible, even by my standards. :-p

It's a matter of keeping proper perspective. There is no such thing as perfect security, just different levels of dilligence. Even though I am incredibly dilligent with my security practices, I am still vulnerable.

Someone could conceivably tamper with my desktop machine at work while I was home for the evening. They could take out the hard drive, attach it to another computer, read its contents, write stuff to its file system, install a keyboard tracer internal to the case so I wouldn't notice it, etc. Of course, this would be an extraordinarily high risk operation for very little reward, and thus it isn't in anyone's interest to try said shenanigans.

A much more likely attack would be to install software on it were I to let someone sit down at my login prompt and bang away, either intentionally without properly monitoring what they were doing, or acidentally by having someone sneak a session at my desk. Simply locking my workstation when I am away from it takes care of this. Had I missile codes on my machine, more security regarding my hardware would be in order, but as it stands the best someone could do with a password hijacking would be to steal a few thousand dollars from me, or deface my web site, neither of which is worth the kind of resources it would take to pull off such an operation.

"No security system is completly error-proof"

You are absolutely correct...the errors are usually generated by humans ;-)