in reply to Why do you have to worry about Brute Force Attacks?

.....and yet another thing not covered, (or maybe it was) is that surely if you are charging people for access, you would not want somebody else getting the information for free?

I know that if I was one of your clients, I would be more than a little annoyed to find out that somebody has used my deatils to access information/services for "free" using my account which I paid for. I such a case it may convince me to stop using your site.

The passwords for site are there to protect the owners and the users.

Another nice feature is a welcom message with something like "Welcome back, you last logged in 3 days ago at 12:33 from" sort of thing....