Perhaps this is by design, but following a successful login, shouldn't the login counter be reset to its start value. On my development blog what I've been finding is that after failing at least one login attempt, the additional Limit Login information is displayed as you would expect i.e.
Error: Incorrect Username and Password
X attempts remaining.
However, if I now successfully log in, and then log out, when I am subsequently returned to the login screen I now see:
X attempts remaining - surely this should reset after a successful login and not be displayed to the user unless the number of attempts left is less than the maximum allowed?
Am I missing something - or is this behaviour by design?