Comment on How to harden against SSH brute-forcing?
kylian0087@lemmy.dbzer0.com 1 week ago
Configure the firewall with a IP whitelist to only allow connections to ssh be made from your home IP.
Other then that, disable password logon for ssh and setup up key based authentication.
sugar_in_your_tea@sh.itjust.works 1 week ago
Agreed, but be careful about the whitelist. If your home IP changes, you’ll be locked out until you update it, so you should consider an IP range if that’s a possibility for you. Likewise, if you’ll be accessing it from multiple locations (say, a family member’s house), then make sure to add those as well.