I'm setting up a new server with a provider offering, and while the pricing and performance are solid, I'm looking to apply strong SSH security practices right from the start.
Here’s what I’ve done so far:
- Disabled root login
- Changed the default SSH port
- Set up key-based authentication
- Disabled password authentication
However, I'm still concerned about potential brute-force attempts and firewall configurations.
Has anyone implemented fail2ban, custom UFW rules, or port-knocking on a similar VPS?
Would appreciate any scripts or automation tips you use to secure SSH access effectively.
