>> Are there any best practices or configurations to >> limit brute force attacks on open ports like ssh? > > The only one I've ever needed is to move it off the default port. > If you have a small ssh user list then I'm a strong believer in the "AllowUsers" config option as well. -Ken