Merge pull request #13027 from alanmcanonical/fix_accounts_user_dot_g…

…roup_ownership

[Ubuntu2404] Fix remediation of rule accounts_user_dot_group_ownership

linux_os/guide/system/accounts/accounts-session/accounts_user_dot_group_ownership/ansible/shared.yml

@@ -5,6 +5,6 @@
 # disruption = low
 
 - name: Ensure interactive local users are the group-owners of their respective initialization files
-  ansible.builtin.command:
+  ansible.builtin.shell:
     cmd: |
-      awk -F':' '{ if ($3 >= {{{ uid_min }}} && $3 != {{{ nobody_uid }}}) system("chgrp -f " $4" "$6"/.[^\.]?*") }' /etc/passwd
+      awk -F: '{if ($4 >= {{{ gid_min }}} && $4 != {{{ nobody_gid }}}) print $4":"$6}' /etc/passwd | while IFS=: read -r gid home; do find "$home" -maxdepth 1 -name "\.[^.]*" -exec chgrp -f $gid "{}" \;; done

linux_os/guide/system/accounts/accounts-session/accounts_user_dot_group_ownership/bash/shared.sh

@@ -4,4 +4,4 @@
 # complexity = low
 # disruption = low
 
-awk -F':' '{ if ($3 >= {{{ uid_min }}} && $3 != {{{ nobody_uid }}}) system("chgrp -f " $4" "$6"/.[^\.]?*") }' /etc/passwd
+awk -F: '{if ($4 >= {{{ gid_min }}} && $4 != {{{ nobody_gid }}}) print $4":"$6}' /etc/passwd | while IFS=: read -r gid home; do find "$home" -maxdepth 1 -name "\.[^.]*" -exec chgrp -f $gid "{}" \;; done