BIP38 Key

[ipoomyself]

ok so what is the maximum amount i can type as a passphrase?

im concernd... very concernd

that if i put too many letters in and then redeem the paper wollet that only accepts 20 characters instead of 21 will that happen??

[franky1]

ok so what is the maximum amount i can type as a passphrase?

im concernd... very concernd

that if i put too many letters in and then redeem the paper wollet that only accepts 20 characters instead of 21 will that happen??

how about just make up 50 characters then add a 5 at the start (base58)

but if there is a real reason to want to use bip38. then atleast do not use real words as a dictionary hack tool may already have all the combinations.

but in theory if you make a passphrase that is say 25 letters. and you have a program convert it to a private key.. whether its only 20 letters or 200 letters it doesnt matter. because the program you used obviously would cut off the last letter if 20..

so when you time it in each time it would cut off the letter..

i just think its easier more secure and safer to just make up 50 characters and add a 5 to it

[Dare]

ok so what is the maximum amount i can type as a passphrase?

im concernd... very concernd

that if i put too many letters in and then redeem the paper wollet that only accepts 20 characters instead of 21 will that happen??

how about just make up 50 characters then add a 5 at the start (base58)

but if there is a real reason to want to use bip38. then atleast do not use real words as a dictionary hack tool may already have all the combinations.

but in theory if you make a passphrase that is say 25 letters. and you have a program convert it to a private key.. whether its only 20 letters or 200 letters it doesnt matter. because the program you used obviously would cut off the last letter if 20..

so when you time it in each time it would cut off the letter..

i just think its easier more secure and safer to just make up 50 characters and add a 5 to it

As far as I know, just because a string is valid base58 doesn't mean it's a valid EC private key. BIP38 is far safer than what you suggest, and established tools like bitaddress.org are easy to use and work well. Any limit on passphrase length would be defined by the software, and most don't impose a limit unless absolutely necessary. Iif you want to be sure, you can save an offline copy of bitaddress.org and encrypt and decrypt a key with it. Then you'll always have that copy that you know will work to decrypt your key, even if nothing else will.

[DeathAndTaxes]

There is no limit.  Like most password applications the phrase itself is not used.  The Scrypt KDF is used to convert the passphrase into a 256 bit AES key.  The unencrypted private key is then encrypted with the AES key to produce the encrypted private key.