@14:00-15:00 you can always run ssh-keyscan and get the administrator of the other machine on the phone before blindly accepting the key. Or use certs. 🙂

Hey! Can you go over in s later episode the use of certificates as an option to the ssh keys?

You can also set the port, and other options, in your .ssh config file so you don’t have to add alias or -p option every time you ssh/ansible/salt/etc.

Snort is the port knocking intrusion detection Damon

The beard is enough to block any ssh connection attempt