It would be very desirable to increase the password scheme to support more than 8 characters. Our customer requires us to support a certain number of the Database STIG requirements developed by DISA for the US DoD, including DG0079:
"(DG0079: CAT II) The DBA will ensure database password complexity standards meet current minimum requirements for length (9 characters or more for database application user accounts and 15 characters or more for privileged database accounts) and composition (at least two uppercase characters, two lowercase characters, two special characters, two digits ) where supported by the DBMS".
From DG0079, the SYSDBA password should be at least 15 characters, and other regular user/application passwords at least 9 characters.
Using Firebird 2.1 on Windows platforms, we can always use Windows Authentication to workaround that limitation, although the SYSDBA password length is still an issue.