tidy up sysctl templates

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>

tasks/section_3/cis_3.1.x.yml

@@ -4,7 +4,7 @@
 # We are using the rhel9cis_ipv6_required to specify if you have IPv6 in use
 - name: "3.1.1 | PATCH | Verify if IPv6 is enabled on the system"
   debug:
-      msg: "Control being set via Handler 'update sysctl' which writes to /etc/sysctl.d/99-sysctl.conf"
+      msg: "Control being set via Handler 'update sysctl' which writes to /etc/sysctl.d/60-disable_ipv6.conf"
       notify: 
           - update sysctl
           - sysctl flush ipv6 route table
@@ -21,12 +21,14 @@
       - rule_3.1.1
 
 - name: "3.1.2 | PATCH | Ensure SCTP is disabled"
-  lineinfile:
-      dest: /etc/modprobe.d/CIS.conf
-      regexp: "^(#)?install sctp(\\s|$)"
-      line: "install sctp /bin/true"
-      create: yes
-      mode: 0600
+  template:
+      src: "/etc/modprobe.d/modprobe.conf.j2"
+      dest: "/etc/modprobe.d/{{ item }}.conf"
+      mode: "0600"
+      owner: root
+      group: root
+  with_items:
+      - sctp
   when:
       - rhel9cis_rule_3_1_2
   tags:
@@ -38,12 +40,14 @@
       - rule_3.1.2
 
 - name: "3.1.3 | PATCH | Ensure DCCP is disabled"
-  lineinfile:
-      dest: /etc/modprobe.d/CIS.conf
-      regexp: "^(#)?install dccp(\\s|$)"
-      line: "install dccp /bin/true"
-      create: yes
-      mode: 0600
+  template:
+      src: "/etc/modprobe.d/modprobe.conf.j2"
+      dest: "/etc/modprobe.d/{{ item }}.conf"
+      mode: "0600"
+      owner: root
+      group: root
+  with_items:
+      - dccp
   when:
       - rhel9cis_rule_3_1_3
   tags: