I also have the ssh port open, password and root login disabled and access is only possible with a private key and the access is in addition protected by fail2ban which is somehow overprotection because you have to have a key in order to login.I have used port 22 forwarding for the last 4 years, the use of password and root login have been disabled. Fail2ban is used to monitor access with ssh, any error causes the IP to be banned for 12 hours.
But in contrast I don't use port 22. Nevertheless I get fail2ban messages but not very often. And again - because ssh login is only possible with a private key that's just to monitor how many folks scan all the ports of your system.
Fortunately the xz issue was detected recently because this would have overcome the private key protection of ssh ...
Statistics: Posted by framp — Sat Apr 27, 2024 7:57 pm