Apart from the mitigation measures included in the post I would also recommend:

• Restrict access to ports handled by sslh using a firewall or access control lists.
• Monitor for unusual or malformed connection attempts using tools like tcpdump, fail2ban, or Zeek.