I think the use of real words, depending on how they are used, is a not bad model.
A machine finds random letters faster than real words.
It depends: if you're comparing one random character to a word, the word is harder to find. But if you compare 4 random characters to a 4-letter word, the word is easier to brute-force (by using a dictionary attack).A machine finds random letters faster than real words.
Quote
"Waterwithsaltandsugar!1" it could be someone's password
I've seen similar phrases used as brain wallets, and they were found.Is it better idea to show your ISP that you are using Tor? Don't you think it's alarming?
Is it less alarming to show your ISP that you are using a VPN?You could eaisly use secondary accounts for purchasing stuff from forum... and I don't mean LeyoceV Mobile 
, but some random newbie account.
"I'd like to give the t-shirt I won to a Newbie who lives in the same country as me"...., but some random newbie account.Which do you think is easier for an automatic system to find:
"1McY1aGwc8jvFtA."
or
"My2YearOldCatLikesYoWalk."
Both are equally strong, but the second option is much more difficult to be recognized by an automatic system than the first.
What makes you think they're equally strong? If the first one is generated randomly, it's much stronger. If you want to use words as a password, at least generate them randomly. Kinda like Electrum does it."1McY1aGwc8jvFtA."
or
"My2YearOldCatLikesYoWalk."
Both are equally strong, but the second option is much more difficult to be recognized by an automatic system than the first.
The probability of him hitting random letters is greater than a sentence.
You should look up the words "dictionary attack" 