Comment on My password is not accepted because it is too long
x00z@lemmy.world 2 days agobcrypt hashes only the first 72 bytes. 24 characters is the max amount of 4 byte UTF8 characters when using bcrypt. Which is stupid because UTF8 is variable, but still, it’s a possible explanation.
notquitetitan@sh.itjust.works 2 days ago
A reason reason to switch to argon :)
WhatAmLemmy@lemmy.world 22 hours ago
To be fair, 24 is still a secure length for a password, and will probably be for another 5+ years.