From 8f7d62f7272032c5f4564191a46fe4d9c229dbd3 Mon Sep 17 00:00:00 2001
From: Jonathan Metzger <9845417+jrmetzger@users.noreply.github.com>
Date: Wed, 8 Jan 2025 09:53:21 -0500
Subject: [PATCH] Update SV-250316.rb

Do we want to make each line with optional spaces/words in between? e.g.

auth        required                                     pam_faillock.so preauth silent fail_interval=900 unlock_time=0 dir=/var/log/faillock
auth        required                                     pam_faillock.so authfail fail_interval=900 unlock_time=0 dir=/var/log/faillock
---
 controls/SV-250316.rb | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/controls/SV-250316.rb b/controls/SV-250316.rb
index 4bc5b30..8a0d3b4 100644
--- a/controls/SV-250316.rb
+++ b/controls/SV-250316.rb
@@ -78,12 +78,10 @@ module with the following command:
   # TODO: refactor this with the pam resource
   describe file('/etc/pam.d/password-auth') do
     its('content') {
-      should match(/auth\s+required\s+pam_faillock.so preauth
-    dir=#{input('non_default_tally_dir')}/)
+      should match(/auth\s+required\s+pam_faillock.so\s+preauth\s+dir=#{input('non_default_tally_dir')}/)
     }
     its('content') {
-      should match(/auth\s+required\s+pam_faillock.so authfail
-    dir=#{input('non_default_tally_dir')}/)
+      should match(/auth\s+required\s+pam_faillock.so\s+authfail\s+dir=#{input('non_default_tally_dir')}/)
     }
   end