Securing my website

I wanting to secure my website a little better. I have already done Options -indexes for the proper directories. But, I am wondering about what permissions I should have on the individual files. Are there general rules for permissions on cgi and pl files. Also, does one need to change permissions on .htaccess? And what should permissions be on more normal files (htm, html, php and images)?