It makes sense for some hashing algorithms (some only take 40 bytes, for instance, which is 20 characters of UTF-16 on Java or native Windows), though the modern hashing methods will take more than enough bytes to make most password size limits obsolete.
I don’t see the problem with a 128 character limit, though. I would’ve used 64 myself, not like it makes any difference.
It makes sense for some hashing algorithms (some only take 40 bytes, for instance, which is 20 characters of UTF-16 on Java or native Windows), though the modern hashing methods will take more than enough bytes to make most password size limits obsolete.
I don’t see the problem with a 128 character limit, though. I would’ve used 64 myself, not like it makes any difference.