Not sure how effective it would be against a determined hacker but certainly gives me a bit more peace of mind. Thanks for developing it and sharing it - great plugin.
You are correct, a determined hacker willing to employ brute force against the plugin might be able to get past a key less than 8 characters long. Remember, getting past AdminExile doesn't get them logged in, just to the login screen.
So, standard password rules should apply. Long keys with a mix of upper and lower case letters and numbers will be the most secure.
Still pinching myself as it installed without any problems and worked first time! Oh, and the syntax to embed into an article couldn't be much simpler.
Just enable the plugin and you're away. Would have taken hours to program this manually.
Thank you for your review!