Another security plugin has the option to force logins and force wp-admin logins to ssl by adding options to wp-config.php.
Also, wordpress provides a nice api that provides random salts for wp-config.php. Many people install wordpress without ever setting these salts.
If these are not already a part of this plugin, I'd like to suggest them to be included. If they are part of this plugin, can somebody point out where? Thanks.