In my opinion, the best way to ensure your secure your wordpress site that is is through the use of a WordPress backup plugin. This is a relatively inexpensive, elegant and easy to use way to make sure your site is get more available to you.
Hackers don't have the capability when you got these lined up for your own security, to come to your WordPress blog. You definitely can have a WordPress account that provides big bucks from affiliate marketing to check these guys out you.
Move your wp-config.php file one directory up from the WordPress root. WordPress will look site link for it there if it cannot be found in the main directory. Additionally, nobody will have the ability to read the document unless they've SSH or FTP access to your server.
Phrases that were whitelists and black based on which field they look within, in a page request. (unknown/numeric parameters vs. known post bodies, remark bodies, etc.).
Free software: If you've installed scripts that are free such as Wordpress, search Google for'wordpress security'. You'll get tips.