The secure your wordpress website Codex has an outline of what permissions are okay. Directory and file permissions can be changed through an FTP client or within the administrative page from your web host.
Do not depend on your Web host - Many men and women rely on their web host to"do all that technical stuff for me", not realizing that sometimes, they do not! Far better to have the responsibility lie rather than out.
Keep your WordPress Installation up to date - One of their explanation the easiest and most valuable tasks you can do yourself is to make sure your WordPress installation is updated. WordPress Continue gives a notice in your dashboard to you, so there's really no reason.
You can make a firewall that blocks hackers from infiltrating your blogs. From coming into your files, the hacker is prevented by the firewall. You must also have updated version of Apache. Upgrade your PHP. It is essential that your system is always full of upgrades.
However, I advise that you set up the Login LockDown plugin instead of any.htaccess controls. Login requests will stop from being permitted after three unsuccessful login attempts from a specific IP address for an hour. You may still get into your panel whilst and yet you still have protection against hackers if you do that.