I currently have an always running Linux (Elementary OS) server that runs a web server and TwoToneDetect (for recording fire dispatch and emailing them out to volunteers) now to access this server, I use SSH. One of the big things I read to do was to disable password authentication and use keys. I currently have the server setup on a custom port and using keys to login vs. a password. How secure is this?
[link][49 comments]