What exactly does "unprotected" mean in this context? I mean ssh means secure shell, so shouldn't the ssh be secure from the start? Or, a better question, what would you need to do to secure your server and why aren't these steps "on" by default?
I mean, even any new WiFi router you set up comes with WPA enabled by default. Wasn't always this way. I still remember setting up routers where the password protection was an afterthought.
But ssh isn't really that new is it? Should these security measures be default at least by now?
Few basic things which can be done is like .. install Fail2ban , change the default SSH port to something else, and use PermitRootlogin as No in sshd_config file
I mean, even any new WiFi router you set up comes with WPA enabled by default. Wasn't always this way. I still remember setting up routers where the password protection was an afterthought.
But ssh isn't really that new is it? Should these security measures be default at least by now?