I have done a long study, over the last days, on the subject of security, particularly in Joomla installations on Apache/PHP/mySQL platforms and I have locked down my site, further, closing any tiny loopholes I found.
Now that I have a much better idea of the risks and solutions to them, I have written an article on the site, describing what Goaheadspace can do to secure a site, as part of our service.
http://www.goaheadspace.net/web/website-design/security.html (http://www NULL.goaheadspace NULL.net/web/website-design/security NULL.html)
I particularly reference Joomla security FAQ (http://docs NULL.joomla NULL.org/Security_and_Performance_FAQs#How_can_I_add_the_Joomla NULL.21_Security_Announcements_Feed_to_the_Admin_Control_Panel NULL.3F). and Security checklist (http://docs NULL.joomla NULL.org/Category:Security_Checklist) which I have studied extensively.