Pixelposters, I would like to secure my installs as much as is possible. Please share with me any additional measures I might take in this regard.

For instance, might I safely:

Rename the folder "admin/" to something else?
apply Htaccess?
tighten up Permissions?
encrypt the DB config file?
Replace the native [url] handling?

My own suggestions:
Don't use "pixelpost_" as table prefix.
Password-protect the admin folder.
Disable "auto login"

What else?
TIA, soj

it seems you know a lot about the possible actions

why don't you just try out yourself?
it takes just 5 seconds to rename the folder
than try to post and check out if everything works

please, try yourself.. it costs nothing

the best way to secure everything is not connect to the internet, not publish in the internet, not use email etc. ;=)

the location of the files on the server has very little to do with the security. and no matter what the dp table prefix, if they use a injection meathod that gets through, they will get all the database info.

1) Encrypt all php files using Zend Encoder
2) Set up additional firewall for PP installation
3) Ask each visitor if he is hacker and denied access if they are
4) Rename all scripts and change their names in source files
5) ...