nostr:npub1l3gpk6vrudg8r67swqlex5alv9ch59s4lw46kk6hekuxe2n3aczsyqvu48 With very large limits, there is a danger of a DoS attack of using an extremely large password repeatedly to force computationally expensive hashing on the server side. But 50 chars is in no danger of that, to my understanding.