Well, you would have to modify the code to validate the password. Perhaps you would use ajax for it even. Maybe something to add in the future.
As for a CAPTCHA, that is also something to add. For now you could modify the code. The user login/registration pages should be located in the users folder.
Some files to check are login.php, login_functions.php and signup.php.