Hey there. I installed this plugin a few hours ago, and so far I've had 142 intrusion attempts. Most of them have an impact of around "8", have the field name "COOKIE.w3tc_referrer" and the tags "xss, csrf, id, rfe, lfi".
I'm not too sure what this means, though. Are these hack attempts?
Also, about the Ban threshold, it's set at 70 by default, but should I make it lower? I don't want to cause any difficulty for normal users, but my site has been hacked a few times in the past, and I'm hoping this can help me prevent that from happening again.
Lastly, after logging into admin, I see that my ip is listed with an impact of 6, for the fields "REQUEST.pwd" and " POST.pwd". That's not too big a deal, but I'm a little troubled that the "value" shows my password in plain text. Should that be happening?