- Use public key authentication over passwords:
PasswordAuthentication no - Disable login attempts with empty passwords:
PermitEmptyPasswords no - Disable root login:
PermitRootLogin no - Disable SSHv1 and use SSHv2:
Protocol 2 - Disable X11 Forwarding:
X11Forwarding no