And/Or use password protected keys, disable passwords on the ssh service, require 2FA, and/or temporarily block IPs that are trying to guess passwords.
You can also setup ssh key expiration dates via the authorized_keys file. `man sshd` for details. Regards, - Robert On Sat, Jan 13, 2024 at 1:40 PM Russell Senior <russ...@personaltelco.net> wrote: > I see them a > lot in my own logs of public facing machines, but at the rate passwords are > being tried, my math suggests it will take many centuries to guess a decent > password. Answer: have a decent password. > > -- > Russell Senior > russ...@personaltelco.net <russ...@personaltelco.net>