Why long pass that don't make sense?
Yes, in systems where there are limited attempts (custom) dictionary or common passwords should be defeated by something unique, if the user has to set the length longer themselves due for security reasons, it is not a secure system in the first place. Online, no user is going to try to attempt 2^256 passwords in one go. Offline, passwords can be derived in to extremely large keys that make the length of the password moot as long as it is unique in some form.
I am liking two-factored authentication more and more, I can never remember half of my passwords.