Keep headers/logos under 125 pixels high. It takes up valuable viewing space, especially for laptop users, that is best left for the good stuff to appear"above the fold." Take a cue from the big companies, simple logos done well say it all. This is our #1 pet peeve - screaming logos and headers!
Finally, secure your wordpress site will tell you that there's not any htaccess in the directory. You can put a.htaccess file if you wish, and you can use it to control access to the wp-admin directory from IP address or address range. Details of how to do that are available on the internet.
I protect an access to important files on the blog's server by putting an index.html file in the particular directory, which hides the files from public view.
There's a section of config-sample.php that is headed"Authentication Unique Keys." There are. There's a hyperlink within that part of code. You need to enter that link in your browser, copy the helpful hints contents which you get back, and replace the keys you have with the unique, pseudo-random keys offered by the site. This makes it harder for attackers to automatically generate a"logged-in" cookie for your website.
Now we are getting into matters. Whenever you install WordPress, you need to edit the file config-sample.php and rename it to config.php. You need to install the database details there.
Bear in mind the safety of your sites depend on how you handle them. Be certain that you read this post here follow these basic strategies to prevent hacks and exploits on your blogs and websites.