Use a non-standard port for SSH, disable Telnet; for your apache you can make a .htaccess file and ban ip's directly (I prefer masks myself); an example would be:

Taken directly from UGN Security's .htaccess file:
# Deny users IP's #
order allow,deny
#deny from - Bans Direct IP
#deny from 012.34.5. - Bans IP block 012.34.5.*
#deny from - bans host of *
deny from
allow from all
Donate to UGN Security here.
UGN Security, Back of the Web, Elite Web Gamers & VNC Web Design Owner