Question SSH Securing Server

[weelow]

I have my admin user account as
user: adminaccount
password: RSA key encrypted with a password

now my server is secure, however i want to give access to users to be able to authenticate with password over sftp. So i enabled password authentication on the sever using the sshd_config file.
and also changing the plesk plans to allow ssh charooted access.

What worries me right now is the security. how can i protect the server from ddos and brute force attacks now that the server will authenticate with password it makes it susceptible to attacks.

Any tips?

 

[Bitpalast]

You can limit the IP addresses or IP ranges for accessing a service from the outside by entering them into the /etc/hosts.allow file of your system. Please check it on Google to find out more on hosts.allow.

It is recommended, too, to use the fail2ban SSH jail, so that brute force attempts are quickly identified and the attacker's IP is blocked before it can try many user/password combinations.

 

[weelow]

Great. I will try it out and post my results