jed_fox1’s Twitter Archive — № 546

@ChrisFerdinandi There’s definitely reason to have some limit since hash algorithms can be expensive and you don’t want to enable DoS attacks but even a few kB is far larger than any reasonable password.