added ssh banner playbook

sshbanner-bjphoster.yml

@@ -0,0 +1,6 @@
+---
+- hosts: all
+  become: true
+  tasks:
+    - import_tasks: tasks/debian-general/sshbanner-bjphoster.yml
+    - import_tasks: tasks/debian-general/sshbanner.yml

tasks/debian-general/restart-ssh-service.yml

@@ -0,0 +1,5 @@
+---
+- name: Restart SSH service to apply new rules
+  ansible.builtin.systemd:
+    name: ssh
+    state: restarted

tasks/debian-general/sshbanner-bjphoster.yml

@@ -0,0 +1,19 @@
+---
+- name: Ensure /etc/banner is populated with BJPHoster Network
+  ansible.builtin.copy:
+    dest: /etc/banner
+    content: |
+      |--------------------------------------|
+      |   This is a private system managed   |
+      |   by the BJPHoster Private Network.  |
+      |                                      |
+      | Unless otherwise authorized you are  |
+      |    to leave this virtual premise     |
+      | immediately, otherwise this will be  |
+      | considered a security breach attempt |
+      |     and will be reported to the      |
+      | competent authorities and persecuted |
+      |    to the extent permitted by the    |
+      | applicable law of the country where  |
+      |        these systems reside.         |
+      |--------------------------------------|

tasks/debian-general/sshbanner.yml

@@ -0,0 +1,7 @@
+---
+- name: Ensure SSH banner is uncommented and right path in /etc/ssh/sshd_config
+  ansible.builtin.lineinfile:
+    line: "Banner /etc/banner"
+    path: /etc/ssh/sshd_config
+    regexp: '^#\s*Banner.*$'
+- import_tasks: restart-ssh-service.yml