Just to note, AmiDaniel has filed a bug report about the security of the login system. I particularly like the idea of using captchas after multiple attempts, to stop automated password cracking. The bug report is at http://bugzilla.wikimedia.org/show_bug.cgi?id=9816
--Michael Billington