Enable standard logstore plugin for both tests below. Test 1 set config 'notifyloginthreshold' to 1 set config 'notifyloginfailures' to a user which can receive emails Login to site incorrectly 2 times using :- a valid username an invalid username a invalid username from a different ip, beside your own Login correctly to the site twice. Run cron, make sure an email is sent to the user selected in notifyloginthreshold, with a report that gives details about each incorrect login information with time, ip and username. Make sure the link to log reports in the email works. Test 2 Before applying the patch, set displayloginfailures config to something beside "nobody". Apply the patch, and upgrade. Make sure now displayloginfailures is a checkbox and not a select and is checked. Do incorrect logins with valid username. Login as that user, and make sure you get a message, just below the logging box saying "x failed logins since your last login" Test 3 Run unit tests under user/tests/userlib_test.php