Greetings. my experience is on local vps. comment on my situation and I hope security comments
after a clean install of debian 6, do the following: apt-get update. apt-get upgrade. apt-get install mcrypt apt-get install fail2ban (to ensure a little more ssh channel) apt-get install arno-iptables-firewall (iptables easy to configure andonly open ports 22, 80, 443) further use http://password.es/ to generate my root password, which are 16 characters long thatinclude symbols. these passwords I store them in a safe place where access viahttps and never accessible from a computer "windows" if necessary I start with a live cd of puppy linux or SliTaz then enter the vps via ssh