{{{ oval_metadata("The requirement for a password to boot into emergency mode should be configured correctly.", rule_title=rule_title) }}} {{% if 'sle' in product or 'rhel' in product or product == 'fedora' or product == 'slmicro5' or 'ol' in families %}} {{% endif %}} {{% if 'sle' in product or 'rhel' in product or product == 'fedora' or product == 'slmicro5' or 'ol' in families %}} {{% endif %}} /usr/lib/systemd/system/emergency.service {{%- if product in ["fedora", "ol8", "ol9", "kylinserver10", "openeuler2203", "sle12", "sle15", "sle16", "slmicro5"] or 'rhel' in product -%}} ^ExecStart=\-/usr/lib/systemd/systemd-sulogin-shell[\s]+emergency {{%- else -%}} ^ExecStart=\-/bin/sh[\s]+-c[\s]+\"(/usr)?/sbin/sulogin;[\s]+/usr/bin/systemctl[\s]+--fail[\s]+--no-block[\s]+default\" {{%- endif -%}} 1 {{% if 'sle' in product or 'rhel' in product or product == 'fedora' or product == 'slmicro5' or 'ol' in families %}} /etc/systemd/system/emergency.service.d ^.*\.conf$ ^ExecStart=\-/usr/lib/systemd/systemd-sulogin-shell[\s]+emergency 1 {{% endif %}} /usr/lib/systemd/system/emergency.target ^Requires=.*emergency\.service 1 /etc/systemd/system ^emergency.service$ /etc/systemd/system ^emergency.target$ /etc/systemd/system/emergency.service.d ^.*\.conf$