In these days a troll tried to find some of fa.wiki's sysop's passwords he/she had more than 40 times unsuccessful login only for one account! In my opinion, the loginNotify extension system should show his Ip.
If users know which IP attacked them they can report that IP or IP range to block.
for example, at below he tried 43 times unsuccessful login only for one account! it is such a nightmare!
Other sysop's account