You should turn off ssh password logins on external facing servers at a minimum. Only use ssh keys, install fail2ban, disable ssh root logins, and make sure you have a firewall limiting ports to ssh and https.
This will catch most scripted login attempts.
If you want something more advanced, look into https://en.m.wikipedia.org/wiki/Security_Technical_Implementation_Guide and try to find an ansible playbook to apply them.
I thought I was in NCD for a moment.
Just bust out the nukes.
Warbird dogfights.
World’s smallest violin.
Me and the boys in your bloodstream.
Yep, used the reddit solution.
I have a set of these. I’m almost 40.
I put on my robe and wizard hat?
I’ll enjoy x11 until my distro makes Wayland the default.
Ive had 2 as a child and 4 as an adult. Only one of them has a penchant for it. He will go for it every opportunity he gets. It is dependent on personality, but flipping the TP around is a deterrent. In the bathroom he has access to I keep it in a cabinet.
Lawful evil owns a cat.
Slackware over here. High five
Wait until they find out about Ansible.