I updated AIO WP Security today and noticed a new and handy feature in the Brute Force section, Rename Login. I tried it out but am unsure as to whether the slug replacement pertains to the /wp-admin/ part of the address - so you simply add it on (e.g. http://www.example.com/myslug/) or the wp-login.php file itself (http://www.example.com/myslug.php). Which is the correct renaming method?
I tried the former and wasn't able to log in: first it claimed my login captcha answer was wrong when it wasn't (and locked me out) and then when I disabled the captcha, redid the slug renaming and logged out to test, it automatically blocked my IP address.