‘Walter’ asked about dealing with endless ssh port dictionary attacks.  Several suggested changing ports and removing passwords, with opie(4) for when keyfiles aren’t available.  Also, there’s various auto-blocking scripts, though they aren’t as useful nowadays.