The fix hacked wordpress database Codex has an outline of what permissions are acceptable. Directory and file permissions can be changed through an FTP client or within the page from the web host.
The approach, and the one I recommend, is to use one of the creation and storage plugins available for your browser. Lots of people like RoboForm, but I think after a trial period, you need to pay for it. I use the free version of Lastpass, and I recommend it for those who use Internet Explorer or Firefox. That will generate passwords for you.
Keep your WordPress Setup to date - One of the simplest and most valuable tasks you can do yourself is to make sure your Full Report WordPress installation is updated. WordPress provides you a notice on your dashboard, so there is really no reason to not do this.
WordPress is one of the platforms for websites and self-hosted sites. While WordPress is pretty secure out of the box, there are always going to be individuals who want to make trouble by finding a way to crack into accounts special info or sites to cause damage or inject hidden spammy links. That's why it's essential to be certain that your WordPress installation is as secure as possible.
There is. People know where they can login and additionally they could drop by with your login form and try out a different combination of passwords and user accounts. In order to prevent this from happening you need to set up Login Lockdown. It is a plugin that lets users attempt to login with a wrong password three times. Following that the IP address will be banned from the server for a specific get more timeframe.