First Command to Run On Debian


(Also applies to Ubuntu if you have a SSH server installed.)

sudo apt-get install denyhosts

DenyHosts is a Python application that monitors SSH authentication attempts and block hosts with multiple failures. While its configuration file is easy to figure out, the defaults work well for me.

Every SSH server should be running DenyHosts or a similar security application. Running without it is like running Windows without anti-virus.