As writting here security is not just a one click operation - it is all about **security layers**. Furthermore, you should not ignore other weak spots. Having a super secure VPS and a rootkit or any malicious software on your admin computer can bypass all security you put into your VPS. The best setup you can use to securely login and admin your harded VPS is a seperated computer like Raspberry Pi (RPi) or any other Single Board Computer (SBC) - based on open source software and limited usage for only one porpose. Tip: A good software source can be found here: https://dietpi.com/. Another alternative you can think of is https://tails.boum.org/
A more secure and elegant approach offers https://www.qubes-os.org/. When you follow this chat / guide you can simply setup a splitted SSH qube which can A) more secure than a smard card (depends on your risk scenario) B) combine this with KeePassXC (runs only within a vault virtual machine, without network access).
A more secure and elegant approach offers https://www.qubes-os.org/. When you follow this chat / guide you can simply setup a split SSH qube which can A) more secure than a smard card (depends on your risk scenario) B) combine this with KeePassXC (runs only within a vault virtual machine, without network access).
