“A service called fail2ban can mitigate this problem (edit: SSH being public) by creating rules that can automatically alter your iptables firewall configuration based on a predefined number of unsuccessful login attempts. This will allow your server to respond to illegitimate access attempts without intervention from you.”
More from Justin Ellingwood
“Using the proxy_cache directive, we can specify that the backcache cache zone should be…”
“Intelligent content caching is one of the most effective ways to improve the experience…”