The only mitigation that I think is viable would be to display a warning when non-CP1252 password chars are used.
The only mitigation that I think is viable would be to display a warning when non-CP1252 password chars are used.