[Improvement] Add maxLength configuration and default to isStrongPassword

`isStrongPassword` should include a configuration option for `maxLength` of a password.

I believe this is a valuable improvement for `isStrongPassword` because one hits a point of diminishing returns in password strength as password length increases. It would also help preclude overflow attacks.

I'm willing to work on this.