Ubuntu 22.04 This test makes sure that /var/log/ is group owned by systemd-journal or root. /etc/group ^systemd-journal:\w+:(\w+):.* 1 /usr/lib/group ^systemd-journal:\w+:(\w+):.* 1 object_file_groupowner_var_log_journal_systemd-journal_gid_etc object_file_groupowner_var_log_journal_systemd-journal_gid_usr /etc/group ^root:\w+:(\w+):.* 1 /usr/lib/group ^root:\w+:(\w+):.* 1 object_file_groupowner_var_log_journal_root_gid_etc object_file_groupowner_var_log_journal_root_gid_usr /var/log .*\.journal[~]? symlink_file_groupowner state_file_groupowner_var_log_journal_0_systemd-journal state_file_groupowner_var_log_journal_1_root symbolic link