This should definitely be a required necessary security plugin.
Reason I asked because my host now requires me to have a cache, and I'm using Hyper-Cache...
here was the problem, I'm also using another security-plugin called "limited login attempt," but due to having Hyper-Cache, it caches the redirects from Lockdown WP Admin
Hence, I'm no longer protected using "limited login attempt" because the 5 tries attempt won't go down to 0, but stay at the last cached attempt.
However, Hyper-Cache doesn't cache the "wp-admin" so when I disable "Lockdown WP Admin" and go back to accessing the wp-login screen page through wp-admin as the only way of getting there, the "limited login attempts" work again.
So as much as I like to use in conjunction both "Lockdown WP Admin" and "Limited Login Attempts", I can only have 1.
Bitter dilemma, but I find "Lockdown WP admin" will offer better secruity than "limited login attempts" if there were no other ways to access the wp-login screen page when "wp-admin" and "wp-login.php" is disabled and there any other similar "universal known-way"...
than just us knowing the acutal redirect we put in Lockdown WP Admin.