1. Installed suhosin and fail2ban.
2. Disabled login for root, and made "username" the only user who can switch to root.
3. Configured SSH server to login with Keys Authentication
anything else you suggest? Are the above steps a good practise?
Last edited by webwizzy; 4th March 2009 at 21:58.