Texas drinking game?
if ubuntu or debian, enable ufw only allow 22 to your IP, call it a day. Honestly because it takes under a minute there is no excuse to not have a firewall.
It was a reply to jarland’s response of “Suppose being perfectly aware of what is listening at all times is equivalent then.” It’s really hard to be perfectly aware of everything on a system at all times, especially when dealing with multiple systems or systems that other people may touch besides yourself. For this reason it’s better to have an edge firewall, but if we are talking single machines in many different locations that isn’t usually possible.
I mean it’s not too bad, situational I’d guess. I know what ports are open on my servers because I’m the only one installing software on them, and I’m the one opening the ports. But I’m not sharing anything at that kind of level really.