I have had two WordPress blogs hacked into in the past. That was at a time when I was doing very little internet marketing, and until I found time to address the situation (months later), these sites were penalised in the search engines. They were not removed, but the rankings were reduced.
The clean hacked wordpress site Codex has an outline of what permissions are acceptable. Directory and file permissions can be changed via an FTP client or within the page from your hosting company.
No software system is immune to bugs and vulnerabilities. Security holes will be found and bad guys will do their best to exploit them. Keeping your software up-to-date is a fantastic way to stave off attacks, because reliable software sellers will mend their products once security holes are found.
A snap to move - If, for some reason, you want to relocate your site, like a domain name change or a new web host, getting your files at your fingertips can save you oodles of time, hassle, and the need for tech help.
Now we're getting into things. You must rename it to config.php and alter the file config-sample.php, when you install WordPress. You will need to deploy the database facts there.
I prefer using a WordPress plugin to get the job done. Make sure is in a position to do copies, has restore performance, and can clone. Also be sure that it is often updated to keep pace. There is not any use in not you can find out more functioning, and backing up your data to a plugin that's out of date.