Modify Ubuntu ansible remediation for sshd_use_approved_ciphers_order…

…ed_stig

The remediation now uses the ansible_sshd_set macro and the
sshd_approved_ciphers variable.

linux_os/guide/services/ssh/ssh_server/sshd_use_approved_ciphers_ordered_stig/ansible/shared.yml

@@ -4,10 +4,15 @@
 # complexity = low
 # disruption = low
 
+{{%- if 'ubuntu' in product %}}
+{{{ ansible_instantiate_variables('sshd_approved_ciphers') }}}
+{{{ ansible_sshd_set(parameter="Ciphers", value="{{ sshd_approved_ciphers }}", config_is_distributed=sshd_distributed_config) }}}
+{{%- else %}}
 - name: "Configure sshd to use approved ciphers"
   lineinfile:
     path: /etc/ssh/sshd_config
     line: 'Ciphers aes256-ctr,aes192-ctr,aes128-ctr'
     state: present
     regexp: '^[\s]*[Cc]iphers[\s]+(aes256-ctr(?=[\w,-@]+|$),?)?(aes192-ctr(?=[\w,-@]+|$),?)?(aes128-ctr(?=[\w,-@]+|$),?)?[\s]*(?:#.*)?$'
     create: True
+{{%- endif %}}