How to secure your WP-ADMIN folder, plus for good measure your WP-INCLUDEs and WP-CONTENT folders.
Aside from the basic blocking of editing the .htaccess file in each directory, one great way of protecting your WP-ADMIN folder in particular is to protect it by IP address.
The good news is you don’t necessarily need a Static IP address. (They are an ongoing cost), You could set the WP-ADMIN up to restrict access to a range of IPS.
Now a cheap broadband (dynamic IP addresses) will probably be a tight(ish) range of IP addresses. With any luck it might be something like xxx.yyy.zzz.123 where 123 ranges from 0 to 255.
Well just miss off the last 3 digits. Now xxx.yyy.zzz works for all ranges 0 to 255 for that last range. You may find you never need to change your .htacess file and therefore you have (almost) the benefits of a static IP (in terms of protecting from hackers), without any of the cost.
More info Like http://www.facebook.com/htdwebmarketing