*bookmarks*
That's funny, this is how I started my review site in 2002, by using a password hacking IRC channel to gain access to the sites. So many sites were shit back then, and we really tried to review the bad ones as well as the good ones. And really, who lets you into their shitty site so you can tear them a new one?
I always figured I was the only one who was breaking in to make people money though, so how mad can they be!
But yeah I feel your pain, they cause real problems, but things are a lot harder for them nowadays.
Couple tips: they use brute force cracking programs to run password lists of people who have previously signed up to porn sites. Usually people use the same username and password, so they'll work on many different sites over the years.
1> if you can, use a form based login, not a pop-up password box as is normal
2> add a human sentry to the form, captcha
3> Block IP's of people who try more than 50+ login attempts in a 15 minute period
4> pick usernames for people
5> force long passwords with letters, capital letters and a number. every extra character makes the number of possibilities way more.