I just saw in the new version of the container that updated while I was back at the day job that there is a settings open to change the default site. Well done, thanks! My next question would be which is the best option for deterring bad guys? 404, 444, or maybe redirect? Or do they all say enough to the prying eyes that the server is responding to reqeuests so they keep at it?
Also, is fail2ban implementation forthcoming? That would help solve the problem.