Whether it is feasible to find a shorter password which hashes into the same price as an extended password, the hashing algorithm is broken. $endgroup$$begingroup$ As hashes are set size, does that suggest that even though not specified when creating the password, all login systems would need to have some kind of greatest input duration (While like