Created a role for initial lockdown of recent VPS, and started role for basic server configuration

.ansible/roles/lockdown/defaults/main.yml

@@ -0,0 +1,15 @@
+#SPDX-License-Identifier: MIT-0
+---
+# defaults file for lockdown
+files_mode: no
+# create_groups:
+#   - group_name: "ftp"
+create_users:
+  - username: "{{ hostvars['server'][0].username }}"
+    password: "{{ hostvars['server'][0].password }}"
+    # ssh_authorize: yes
+# web_users:
+#   - caddy
+#   - www-data
+ssh_pubkey_filename_pattern: '.*\.pub'
+include_root_lock: yes