Scientists from Stanford University have written a tool (browser plugin) that hashes entered password with domain name and sends it in that form. For those people, who don't check certificates it may be a good solution. Well...until the hash function the plugin uses is broken. It requires some work - you need to change you passes on all the sites you wnat to protect this way.