Specify what should happen with passwords longer than 6 characters

[stadust]

Right now it "just works" up to 32 characters, at which point our buffer is too small to hold the decoded base64 string anymore