{{{ oval_metadata("Ensure systemd.debug-shell option is not configured in the 'options' line in /boot/loader/entries/*.conf. Make sure that newly installed kernels won't have this option, it should not be configured in /etc/kernel/cmdline.", rule_title=rule_title) }}} ^/boot/loader/entries/.*\.conf ^options (.*)$ 1 \bsystemd.debug-shell\b ^/etc/kernel/cmdline ^(.*)$ 1 \bsystemd.debug-shell\b