There have been several threads on this topic here, but I summarize the advice given there.
1. Change the admin ID/password as soon as you start configuring your access point (AP), and write it down in a log/journal that is kept secure.
2. Do not broadcast the network connection. The access point stays silent, not advertising its presence. Clients have to seak out and find the AP.
3. Set the MAC exclusion lists to permit only those machine IDs that YOU tell it to.
4. Use the strongest encryption means possible with the wireless adapter and AP.
5. Try to purchase the AP and adaptor(s) from the same manf. at the same time. Less hassle. I had a bugger of a time getting my Linksys adapter for my laptop to work with the AP on my DSL modem (Adaptec). When the modem died, I replaced it with one that does not an an AP, and picked up a Linksys AP.
6. Remember, paranoia is not a mental illness, it is a survival trait.
The two threads on this topic were started by The Rabbi, search for his posts and you should find them.