As a PS - this reminds me of a thread on password schemes on the SAGE (
www.sage.org) mailing list a while back. Rather than use OTPs, a number of people said that they use a password scheme - a root portion, a host-specific portion, and a changing portion. I.e. all passwords for a person might start with a random 4-character string, then have the first 4 letters of the hostname with some sort of translation (rotation through the alphabet, keys next to them on the keyboard, etc.) and then have a string of 4 characters or so that changes every (week|month|etc.).
Not the absolute strength of OTPs, but does a lot to prevent brute-force passwords, guesses, etc.