Secure SSH and enable sudo
By default, a fresh Ubuntu installation allowes a root user to connect by password. That's a big security risk because of two points - working with root users and working with passwords. Way better is to work with sudo
and to disable password authentication for SSH - and use certificates instead....