On a sunny day (Tue, 24 Jul 2018 09:32:04 GMT) it happened Alister
 wrote in :

>default ssh configuration is more than adequate for the Raspberry Pi's
>target audience
>if you need higher levels of security it is still easier to configure the
>SAMBA (which is nowhere near as secure!)

Not sure what you mean by security,
but for attacks from the outside use the port forwarding option
in your cable modem, or whatever you use to connect to the internet.
I only forward outside port 80 to my raspi webserver's IP address.
They can do port scans all they want, and try ssh all they want,
will only find port 80 webserver.

I use ssh -Y all the time, from terminals on a big PC.
Did not need to configure anything for it on my pi.
Usually have no monitors or keyboards connected to the raspis,
all code development via ssh.
To copy files from and to raspis I use scp.

--- SoupGate-Win32 v1.05