Checking /etc/gshadow- fails if group is shadow

[cambid]

Description of problem:

The test for the group of /etc/gshadow- fails if group is shadow and not root under Ubuntu 24.04

SCAP Security Guide Version: Nightly Build

Operating System Version: 24.04.1 LTS (Noble Numbat)

Steps to Reproduce:

1. Download Nightly build and unpack scap-security-guide-0.1.76.zip
2. Run oscap xccdf eval --profile xccdf_org.ssgproject.content_profile_cis_level1_server --rule xccdf_org.ssgproject.content_rule_file_groupowner_backup_etc_gshadow ssg-ubuntu2404-ds.xml

Actual Results:

Title   Verify Group Who Owns Backup gshadow File
Rule    xccdf_org.ssgproject.content_rule_file_groupowner_backup_etc_gshadow
Result  fail

Expected Results:

Title   Verify Group Who Owns Backup gshadow File
Rule    xccdf_org.ssgproject.content_rule_file_groupowner_backup_etc_gshadow
Result  pass

Notes

• The test for /etc/shadow is working as expected with the group shadow

Maybe the difference in the var-handling in https://github.com/ComplianceAsCode/content/blob/f291b6ef20991421d5766dca7e5fcc343fb1036f/linux_os/guide/system/permissions/files/permissions_important_account_files/file_groupowner_backup_etc_gshadow/rule.yml (static) and

content/linux_os/guide/system/permissions/files/permissions_important_account_files/file_groupowner_backup_etc_shadow/rule.yml

Lines 53 to 55 in f291b6e

	{{% elif "ubuntu" in product or "debian" in product %}}
	gid_or_name: '42'
	{{% else %}}

(for all debian and ubuntus) is the problem here.