One of the first things you want to do is make sure no one tries to look at your .htaccess file.
This is actually very easy to do, all you need to do is make use of the Files option.
Just enter the code below to block people seeing your .htaccess file.
# Block people seeing the htaccess file
deny from all