OpenSSH now mitigates this.

We do'nt use sshguard anymore, as login by password is disabled, keys are required.

Done during the migration to EquaTower and Salt for aphlict cachet devcentral wolfphab acquisitariat etherpad tommy ci silly_bardeen.

The option is the same for Etherpad and DevCentral:

The server works fine. Next step is to integrate Certbot or any other client with it and create relevant CNAMEs.

Server is deployed on Equatower.

5.4 migration is done for the running source code, but tests require to cope with the undocumented internal framework mechanisms changes for events.

Still maintained.

No more log messages.

Known similar issue: https://forums.freebsd.org/threads/crontab-not-working-after-upgrading-to-freebsd-12-0-release.68675/

I have no idea how to do it, but looks like a good plan. Apart that, in my opinion, you do a much more of what would be necessary to run nasqueron services (but it is your time, you use it like you want)

Those are valid concerns.

looks an interesting tool, something quite frightening is that it comes with a set of exploit, (if I understand, a common way to exploit sudo flaws).
As a shell script not even indented, it is absolutely unreadable, and more or less one have to trust the creator to not making mistake.
Moreover for full use, you have to give a sudo password in clear text ( I just don't understand the reason)
As such, I would say it would be kind of crazy to run it automatically and I would not comfortable to simply run it for myself in any way.

Tagging security as we could need follow-up ACL to allow to connect to.