so to wrap this all up: super-duper passwords, DDNS created, firewall activated, 2FA activated, Account Protection/Auto block enabled, Let's encrypt security key activated, default port changed... probably something else I missed. on a scale of 1-10, 10 being good, how secure am I? would you trust sensitive data on this setup? I realize nothing is 100% secure, but would like to get as close as possible. I guess I inherited some of my that tin-foil hat of my dad's that always drove me nuts as a kid.
Use admin accounts for admin only, and create a separate user account for yourself. I used to work for a huge corporate company, and we would have two user names:
I think the hp part at the end of the user name stood for higher privileged or higher power. I've kept the same philosophy where I have two user names, one is for general use as a standard user and the other is an admin account.