HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.

Login Throttle 0.1

Prevent brute force attacks.

This is a not very sophisticated plugin that prevents brute force attacks on your forum. There is a small glitch with the error messages that a user who has logged in to many times with the wrong password gets shown.
Nice additions would have been an admin screen to see blocked users and an additional "Contact Admin" link to free a suspended account.

If you use a plugin like that, you should be aware of the danger that some evil minded person could literally lock other users out of your forum by simply entering rubbish in combination with their user names.
The only way to prevent this would be to allow log in with mail address only.

It is inspired by the plugin LoginGuard made by businessdad. Sources are on Github: https://github.com/R-J/loginThrottle