There are a number of ways to do it. You can transmit a one-time code to the device that you set up right beforehand. No one’s going to be able to guess your 1024 character one-time password.

You can even protect the password entry program itself with port knocking. If the right ports aren’t accessed in the right sequence, the enemy doesn’t even get a chance to try their passwords.

Every server is on the Internet 99.999% of the time. They are constantly being tested. The right cybersecurity tools are available now.