Does anyone know of a Django application that can be used to extend django auth and block accounts if a brute force password attack is mounted?
That is, an account lockout mechanism that limits the number of login attempts.
http://pypi.python.org/pypi/django-axes/ is what you are looking for.
I created django-failedloginblocker for this purpose and used django-brutebuster and, to a lesser extent, django-axes as inspiration.
http://pypi.python.org/pypi/django-lockout/0.1.0
This file is saved (2018): https://github.com/kencochrane/django-defender