Have you password protected the admin using .htaccess? If not, then good idea. Also, use 'deny from' / 'allow from' Apache directives to limit access to IP of person(s) who have administrative access.
----
Cheers,
Dan
Founder and CEO
LionsGate Creative
GoodPassRobot
Magelln
----
Cheers,
Dan
Founder and CEO
LionsGate Creative
GoodPassRobot
Magelln