Why it would one password on SteemConnect be more secure than four different level passwords at Steemit security management?
The private keys are encrypted on your own device. Someone needs access to your device, and nobody is crazy enough to even bother trying to break the encryption. That's why the most common attack vector is phishing or hunting user errors.
Plus, if you would have read my guide you would know on SteemConnect only private posting key are stored, not any of the others.
Why not let people decide on their own what is more secure for them?
Most people don't give importance to security until they lose their accounts and it may be too late for them.
The most dangerous thing to a user's account is the user himself.
If you want to live dangerously, be my guest, but overall an application has to take a responsible approach.