Brute Force - Enable or Not?

I notice that brute force rules are included but disabled by default. Should we just leave that protection to things like CSF/LFD, WordPress plugins, etc.? Or should we enable those rules in CWAF?


I have enabled those rules and working very good with my wordpress website. You should enable it

New features are disabled by default until we gather enough experience. Bruteforce protection will be enabled by default in future releases.