Keep headers/logos under 125 pixels high. It takes up valuable viewing space, especially for laptop users, that is best left for the good stuff to appear"above the fold" Take a cue from the big companies, simple logos done well say it all. This is our #1 pet peeve - screaming logos and headers!
fix hacked wordpress database will also tell you that there's no htaccess in the directory. You can put a.htaccess file if you wish, and you can use it to control access to the wp-admin directory or address range. Details of how to do that are easily available on the internet.
No software system is resistant to bugs and vulnerabilities. Security holes will be discovered and men will do their best to exploit them. Keeping your software up-to-date is a good way once security holes are found because their products will be fixed by software sellers that are reliable.
This is quite useful plugin, site here protecting you against brute-force attacks that are password-crack. It keeps track of the IP address of every failed login attempt. You can configure the plugin to disable login attempts this contact form for a selection of IP addresses when a certain number of attempts is reached.
Now we're getting into matters specific official statement to WordPress. Whenever you install WordPress, you have to edit the document config-sample.php and rename it to config.php. You want to install the database information there.
Using a plugin for WordPress security makes sense. Backups will need to be carried out on a regular basis. Don't become a victim because of not being proactive about your site!