I originally wanted to do something about Captchas but it turned into doing something related to registration forms. I just followed a template of what I felt that was a secure way to register —
Usernames first and then verification of e-mail before sealing the deal with setting up a password.
And then what do you do when there’s too much password typing? Recently, websites seem more to forgive the user more regarding banning the IP address for 5 minutes. They probably know that most of the users have children — so I took that idea. Instead of banning why not redirect the user to a page where they can avoid being banned and just entering their e-mail to resend a password renewal.