Merge pull request jay-dee7#1 from jay-dee7/ansible-version-bump

updated replace module to use path instead of dest

tasks/section1.yml

@@ -977,15 +977,15 @@
   block:
       - name: "SCORED | 1.7.1.2 | PATCH | Ensure AppArmor is enabled in the bootloader configuration"
         replace:
-            dest: /etc/default/grub
+            path: /etc/default/grub
             regexp: '^(GRUB_CMDLINE_LINUX=(?!.*apparmor)\"[^\"]*)(\".*)'
             replace: '\1 apparmor=1 security=apparmor\2'
         notify:
             - generate new grub config
 
       - name: "SCORED | 1.7.1.2 | PATCH | Ensure AppArmor Security is enabled in the bootloader configuration"
         replace:
-            dest: /etc/default/grub
+            path: /etc/default/grub
             regexp: '^(GRUB_CMDLINE_LINUX=(?!.*security)\"[^\"]*)(\".*)'
             replace: '\1 security=apparmor\2'
         notify:

tasks/section3.yml

@@ -1032,7 +1032,7 @@
 
 - name: "NOTSCORED | 3.7 | Disable IPv6"
   replace:
-      dest: /etc/default/grub
+      path: /etc/default/grub
       regexp: '^(GRUB_CMDLINE_LINUX=(?!.*ipv6.disable)\"[^\"]*)(\".*)'
       replace: '\1 ipv6.disable=1\2'
   ignore_errors: true

tasks/section4.yml

@@ -31,7 +31,7 @@
 
 - name: "SCORED | 4.1.1.3 | PATCH | Ensure auditing for processes that start prior to auditd is enabled"
   replace:
-      dest: /etc/default/grub
+      path: /etc/default/grub
       regexp: '^(GRUB_CMDLINE_LINUX=(?!.*audit)\"[^\"]*)(\".*)'
       replace: '\1 audit=1\2'
   notify:
@@ -47,7 +47,7 @@
 
 - name: "SCORED | 4.1.1.4 | PATCH | Ensure audit_backlog_limit is sufficient"
   replace:
-      dest: /etc/default/grub
+      path: /etc/default/grub
       regexp: '^(GRUB_CMDLINE_LINUX=(?!.*audit_backlog_limit)\"[^\"]*)(\".*)'
       replace: '\1 audit_backlog_limit={{ ubuntu1804cis_auditd.backlog_limit }}\2'
   ignore_errors: true