Something I’ve been meaning to do for a while is look into the possibility of using 2 factor authentication, or 2FA, with SSH connections.

A valuable tool I have been using for many years is etckeeper, it works by essentially turning your /etc directory into a git repository.