Increase password length limit to support passphrases

[tdulcet]

• Increased password length limit from 32 to 256 characters to support secure passphrases. Fixes remove password length limit mozilla/send#1302
• Localized my ATN link on the README.

I noticed this limitation while testing tdulcet/Thunderbird-Send#8. My add-on could upload files with longer passwords, but the web UI would then not allow users to download the files. 😨 If I used the browser devtools to remove the maxlength attribute, it would work as expected, so there does not seem to be a technical reason for this limitation. I would also be happy to completely remove the password length limit, if that would be OK with you.

This change should also allow you to revert timvisee/ffsend@fdf8ae9.

[timvisee]

Thanks!

so there does not seem to be a technical reason for this limitation

I believe I looked into this before, but I don't recall the reasoning behind this.

I would also be happy to completely remove the password length limit, if that would be OK with you.

What about setting it to 4096? I don't have good reasoning for that though, other than having seen that limit in other places for an "almost infinite length".

[timvisee]

Thanks!

[timvisee]

This has been released as v3.4.23.

The send.vis.ee host has been updated as well: https://send.vis.ee/__version__

[tdulcet]

Thanks for the quick turnaround!

I am now going to add support for generating passphrases to the next version of my add-on using the long EFF wordlist. They suggest using 6 words and each word is up to 9 letters, so that requires up to (6 * 9) + (6 - 1) = 59 characters. This 4,096 character limit should now more than cover even the most secure passphrases. 🙂