You can use .htacces to prevent people from peering at your files. Edit the .htaccess in your WordPress root.
<Files .htaccess> order allow,deny deny from all </Files> <Files php.ini> Order allow,deny Deny from all </Files> <Files wp-config.php> Order Deny,Allow Deny from All </Files>
Prevent people from browsing folders
Almost all folders should have this in it to prevent browsing.
- Create a blank index.html and put it in the plugins folder.
Remove Certain WordPress Code
Make sure that your footer.php or header.php doesn’t have this line in the theme:
<meta name="generator" content="WordPress <?php bloginfo('version'); ?>" />
Another great post on WordPress Security can be found here:
If you know of any other items please let me know using the comments section.