diff --git a/roles/ssh_banner/tasks/main.yml b/roles/ssh_banner/tasks/main.yml index ad785f6..95cf266 100755 --- a/roles/ssh_banner/tasks/main.yml +++ b/roles/ssh_banner/tasks/main.yml @@ -1,39 +1,40 @@ -- block: - - name: Install packages - ansible.builtin.apt: - name: - - figlet - - toilet - - - name: Create Banner - ansible.builtin.command: | - figlet -c {{ (inventory_hostname | split('.'))[0] }} -f slant - register: logo - changed_when: "logo.rc == 0" - - - name: Creating a file with content - ansible.builtin.copy: - dest: "/etc/motd" - content: | - {{ logo.stdout }} - owner: 0 - group: 0 - mode: "0600" - - - name: Reconfigure sshd - ansible.builtin.lineinfile: - path: /etc/ssh/sshd_config - regexp: "^Banner.* " - line: "#Banner /etc/banner" - - - name: Reconfigure sshd - ansible.builtin.lineinfile: - path: /etc/ssh/sshd_config - regexp: "^#PrintLastLog.* " - line: "PrintLastLog no" - - - name: Sshd - ansible.builtin.service: - name: ssh.service - state: restarted +- name: Set banner become: "{{ false if inventory_hostname == 'nas.home.lan' else true }}" + block: + - name: Install packages + ansible.builtin.apt: + name: + - figlet + - toilet + + - name: Create Banner + ansible.builtin.command: | + figlet -c {{ (inventory_hostname | split('.'))[0] }} -f slant + register: logo + changed_when: "logo.rc == 0" + + - name: Creating a file with content + ansible.builtin.copy: + dest: "/etc/motd" + content: | + {{ logo.stdout }} + owner: 0 + group: 0 + mode: "0600" + + - name: Reconfigure sshd + ansible.builtin.lineinfile: + path: /etc/ssh/sshd_config + regexp: "^Banner.* " + line: "#Banner /etc/banner" + + - name: Reconfigure sshd + ansible.builtin.lineinfile: + path: /etc/ssh/sshd_config + regexp: "^#PrintLastLog.* " + line: "PrintLastLog no" + + - name: Sshd + ansible.builtin.service: + name: ssh.service + state: restarted