An ssh server isn’t really like a front door though. I don’t necessarily think attempting a random ssh server should be a crime.
I used to spend time on custom iptables scripts but came to the conclusion it’s much better to just architect things in a way where the bots and scanners can’t plausibly create a problem and then ignoring them.
