Hi, I've been using this plugin for a few weeks after it appeared our WP sites were under attack. It's been a real life-saver and I'm very impressed with it. However, we're going to setup http://www.configserver.com which will monitor WP login attempts and block attackers. This means we don't need the attack detection features of this plugin. We're so impressed by it's excellent password security, we're wondering if there's a way to just use that part of the plugin on our Multisite network?
Perhaps a future version could have settings that allow disabling the attack features, and only enforce the password requirements, as well as allowing us to force network-wide password resets?
Either that, or a fork of the plugin that removes the attack detection and blocking capabilities?
What do you think? Would something like this be possible? We'd love to go on using, but would prefer it be a little lighter on the resources and not duplicate the functionality of configserver.