• WordPress, remv.php and you
• 3 must apply security tips for WordPress
• Hardening WordPress
• 5 plugins to keep WordPress secure
• Anatomy of a WordPress hack (”The kicker? All these sites were on Dreamhost.”)
• Did your WordPress site get hacked?
• DreamHost: Troubleshooting hacked sites
• Dealing with a hacker on DreamHost
• Docs on WordPress feeds
• AskApache plugin to display all the internal WordPress URL rewrite rules (example use) (I couldn’t discern how to interpret the output)
• WordPress exploit scanner plugin (I didn’t use after this question spooked me)
• Secure WordPress plugin
• AskApache password protect plugin

There is one thing that our Yahoo! fanboy (who is now a “rock star” in India) didn’t tell his readers, though. Google Webmaster Tool is a great way to:

1. get warned about whether your site is vulnerable to hacking;
2. tell you the problems Google encountered when spidering your site;
3. re-include your site in the Google index after your blog has been hacked and you’ve cleaned it to the bones;
4. and the cherry on the cake is that Google Webmaster Tool will store the warning messages for you even if you’re not yet registered with them.

Our Yahoo! fanboy will never tell his readers that Yahoo! Site Explorer is much, much inferior to Google Webmaster Tool. Only Midas Oracle tells you the truth, folks.