Another recommendation. Move ssh to a different port. Port 22 is too
obvious. It's the first place they'll look. Pick a five digit number (but less
than 65536). Make them work for it.
If you have a couple of locations with static IP addresses then put in ipchains
rules to restrict access to the port you selected with ssh to only those
IPs.
Remove ftp from your servers. use scp for file transfer or look into the new
gftp that supports sftp.
http://gftp.seul.org