Username or EmailPassword
Same here - with the additional mixins of Ghostery to cut down on being tracked, and Certificate Patrol to keep and eye out for "funky stuff".
Ah yes, and DnsCrypt - I'm not entirely sure if getting DNS from a for-profit .us company is better than the somewhat hypothetical risk of getting DNS poisoned/snooped, though
Well, with OpenDNS your DNS-packets do travel further, over more networks. So the chance of poisoning/spoofing increases. DNSCrypt does solve that.
Maybe you are not aware, but there is also DNSSEC.
DNSSEC is the only solution in the long run.
You should also look at DANE.