Practically speaking, the strength of your passwords is orders of magnitude more important to protect against people who want to charge you with a crime before you die... Whether you use AES-Twofish-Serpant or Serpant-Twofish-AES, it's irrelevant if your passwords are password1, password2, and password3. The magic numbers are 39 and 44. A 39 character password composed of all printable characters, or a 44 character password composed of numbers and letters, has ~256 bits of entropy. Stronger passwords are unnecessary with these ciphers, because if the attacker knows they are stronger, he will try to brute force the encryption key directly, rather than the password on the key.