Login timeouts are annoying and frustrating for users already having trouble remembering yet another site's required username and password. This would turn it off:
$wgPasswordAttemptThrottle = false; //which would turn it off
But then captcha doesn't kick in here either, which is not good. So I'm leaving this at the default 'on' setting in LocalSettings.php. --Roger 22:13, 21 February 2012 (CST)
Our choice seems to be:
(a) trigger $wgPasswordAttemptThrottle AND badlogin captcha
(b) trigger $wgPasswordAttemptThrottle but NOT badligin captcha
Triggering only badlogin captcha would be nice but I have not figure out how to get that. ACTUALLY all triggers for badlogin captcha are eluding me at the moment, although I had it triggering earlier today. Alas, complicated machine.