This is a great plugin and does exactly what it says it will do. When you go to install it, you will most definitely notice that it hasn’t been updated in a while but don’t worry about that in this plugins particular case. It really doesn’t do anything that requires updating. I have a warning with this plugin though, if you forget your password, and login the number of times that you specify in its settings, it will lock you out. Even if yoiu use the “change password” option, you will still have to wait the allotted time before it will allow you to log back in again. So bookmark this post if you must because the following solution is the only way to reopen your site.
You will need to be able to FTP to your server, go into the wp-content folder and rename the limit-login-attempts folder. Now go to your wp-admin and login with the new password, or the old one if you finally remembered it, and log back in.
In it’s own words:
“This plugin will limit the number of login attempts possible both through normal login as well as using auth cookies.
By default WordPress allows unlimited login attempts either through the login page or by sending special cookies. This allows passwords (or hashes) to be brute-force cracked with relative ease.
Limit Login Attempts blocks an Internet address from making further attempts after a specified limit on retries is reached, making a brute-force attack difficult or impossible.”