=== Plugin Name ===
Contributors: sirzooro
Tags: access, admin, administration, locking, login, security, user, users, account, accounts, disabling, lock, disable
Requires at least: 2.7
Tested up to: 2.8.4
Stable tag: 1.1.4

This plugin locks user account after given number of incorrect login attempts. This makes brute force and dictionary attacks nearly impossible.

== Description ==

Default Wordpress installation is vulnerable to brute force and dictionary attacks, because there is no limit how many times user can use invalid password before finding the correct one. This plugin closes this security hole by introducing maximum number of invalid login attempts. When someone exceeds this number, his/her account becomes locked, and can be unlocked only by requesting new password (using Lost Password option) or asking Admin for help (he/she can do it too). This makes brute force and dictionary attacks nearly impossible.

You can also disable selected user accounts, so users will not be able to log in even if they will know password. You can use this feature to ban selected users.

Available translations:

* English
* Polish (pl_PL) - done by me
* German (de_DE) - thanks [GhostLyrics](http://firefly.menkisys.de/blog)
* French (fr_FR) - thanks Gilles
* Russian (ru_RU) - thanks [Fat Cow](http://www.fatcow.com)

[Changelog](http://wordpress.org/extend/plugins/user-locker/changelog/)

== Installation ==

1. Upload `user-locker` directory to the `/wp-content/plugins/` directory
1. Activate the plugin through the 'Plugins' menu in WordPress
1. Configure and enjoy :)

== Screenshots ==

1. Error message when User Account becomes locked after too many invalid login attempts.
2. Error message when User Account is disabled.
3. Edit User page - options which allows to lock and disable User Account.
4. Column with User Account status on User List (requires WP 2.8+)

== Changelog ==

= 1.1.4
* Added Russian translation (thanks [Fat Cow](http://www.fatcow.com))

= 1.1.3 =
* Added French translation (thanks Gilles)

= 1.1.2 =
* Added German translation (thanks [GhostLyrics](http://firefly.menkisys.de/blog))
* Marked plugin as tested with WP 2.8.1

= 1.1.1 =
* Marked plugin as tested with WP 2.8

= 1.1 =
* Added option to disable User Accounts (such users cannot login even if they know valid password);
* Administrator can change Locked and Disabled statuses of User Account by editing user profile;
* Display User Account status on User list (requires WP 2.8+).

= 1.0 =
* Initial version