I've migrated a site between servers. And in the process can no longer view images. I have configured the file system and verified the image files reside there, however, when navigating to the node the images do not appear. Any ideas?

I am interested in knowing what best practices you follow to secure your drupal sites.

Specifically:

Which directories are protected; which are not?

The location (within the root directory or not) and what permission to use on an user upload directory?

Do you alter the default robot.txt file? I am aware that User-agent: * Disallow: / should keep crawlers off the site but they are not obligated to follow the robot.txt directives.

Thank you.