Hi, this is a great plugin for password security!
I have a couple of suggestions:
1) I'd like to be able to disable the failed login attempts feature completely, as I'm already using another plugin to provide that functionality in a more advanced way. It would be create to have a switch to turn that off in your plugin (or can I just set the Max Login Attempts to 0 to disable it??)
2) I just tried changing my password to the previous one, while your plugin was active, and it gave me this message warning about the password history:
The password cannot be equals the last 5
That's a good warning of course, it means the plugin works. But the wording is not very clear to me and it might be confusing to some users. May I suggest the following instead?
The new password cannot be the same as one of your previous 5 passwords.