As @craigevil already said most of what is mentioned in that guide seems like waste of time. fail2ban I only run on systems running 247 so usually no not on desktops. As for changing the default ssh port, I only give access to my ssh port for specific ip addresses doing firewall whitelisting. Firejail sounds interesting and fun but seems to much like a PITA for daily use, although I have to admit I never tried it. Currently playing around with podman en containers on my homeserver and that is already a PITA because it's a different way of doing things.Yeah, some of it is okay. Some of it is really not that valuable. The stuff about SSH and jails, for example, aren't too bad.
I'm a bit surprised by that. I've set up shortcuts to run browsers in a jail, for example. Once you do the work once, you don't have to replicate it.Firejail sounds interesting and fun but seems to much like a PITA for daily use, although I have to admit I never tried it.