Keep headers/logos under 125 pixels high. It takes up valuable viewing space, especially for laptop users, that is best left for the good stuff to appear"above the fold." Take a cue from the big companies, simple logos done well say it all. This is our #1 pet peeve - screaming logos and headers!
The secure your wordpress website Codex has an outline of what permissions are okay. File and directory permissions can be changed either through an FTP client or within the administrative page from your web host.
Also, don't make the mistake of believing that your hosting company will have your back as far as WordPress backups go. Not always. While they say that they do, it's been my experience that the hosting company may or might not be doing backups. Take that kind of chance?
I don't think there is a person out there that after learning how much of a problem WordPress hacking is that it's a fantastic idea. Something I've noticed through the years is that when it comes to securing their blogs, bloggers seem to be stuck in this state that is reactive.
In addition to adding a secret key to your wp-config.php document, also over at this website consider altering your user password to something that's strong and unique. A great idea is to avoid phrases, use letters, and include numbers, although wordPress will let you look at this web-site know the strength of your password. It's also a good idea to change your password regularly - say once.
Implementing all of the above will take less than an hour to complete, while making your WordPress site more resistant to intrusions. Websites were this past year, mainly due to preventable security gaps. Have yourself prepared and you're likely to be on the safe side.