[ars]

> I would recommend deactivating password logins and using only key-based logins.

I do that when I can, but sometimes it's not possible.

Also, fail2ban works for other things besides ssh, which I need.