Comment on How to harden against SSH brute-forcing?
kylian0087@lemmy.dbzer0.com 2 months ago
Configure the firewall with a IP whitelist to only allow connections to ssh be made from your home IP.
Other then that, disable password logon for ssh and setup up key based authentication.
sugar_in_your_tea@sh.itjust.works 2 months ago
Agreed, but be careful about the whitelist. If your home IP changes, you’ll be locked out until you update it, so you should consider an IP range if that’s a possibility for you. Likewise, if you’ll be accessing it from multiple locations (say, a family member’s house), then make sure to add those as well.