i saw this feature
options->user options->Login limit method
dont you think this can be abused by your enemies?
let say i hate @Mike so much, that i want him not be able to login..
what i will do is just, login his account with wrong password...
after 4 retries his account is now lockout, he cannot login at this specific time..
i think its better to lockout the ip address and not the username..
what do you think?