Login names

Lately I have been getting a lot of attacks that use User Name – which can be found all over the site, as a login attempt.

I think they are looking for Author names and are using variants of this and right now they are ONLY on character away from guessing usernames on ALL of my sites which are under attack.

These usernames are the names of everyone who has legal access to my sites and there is no point in changing them because the author inf will change too and they will know.

It is scary they are only ONE SINGLE character away from guessing ALL usernames.

One way to minimize risk is to have an admin user that do NOT publish articles and a user with no admin permissions as an author, but it is not a great solution for authors who want their names on the articles.

If my login was only one word they would have guessed by now, but because it is two words seperated by a space they havent quite guessed it yet. They find my author name somewhere which contains a ‘-‘ instead of a space. Thats dangerously close to NOT being locked out and dangerously close to be able to login!!!!

The bastards will ALWAYS be able to find author names and user names so they have to be separated from Login names!!!

What can we do???

The page I need help with: [log in to see the link]