From 715b56f0db7432c31b8c8845444b7482e5e64c4b Mon Sep 17 00:00:00 2001
From: Artem Sidorenko <artem@posteo.de>
Date: Wed, 10 Apr 2019 10:03:04 +0200
Subject: [PATCH] Proper /etc/shadow membership on suse platform

Fixes: https://github.com/dev-sec/chef-os-hardening/issues/250
Signed-off-by: Artem Sidorenko <artem@posteo.de>
---
 .travis.yml                | 1 -
 recipes/minimize_access.rb | 2 +-
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/.travis.yml b/.travis.yml
index d33ae467..6944754a 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -43,7 +43,6 @@ matrix:
     # temporaray disable failing tests until all problems are fixed
     - env: INSTANCE=centos-7 KITCHEN_LOCAL_YAML=.kitchen.dokken.yml
     - env: INSTANCE=centos-7 CHEF_VERSION=14.0.190 KITCHEN_LOCAL_YAML=.kitchen.dokken.yml
-    - env: INSTANCE=opensuse-42 KITCHEN_LOCAL_YAML=.kitchen.dokken.yml
     # allow runs with latest non-stable chef version to fail
     - env: INSTANCE=ubuntu-16-04 CHEF_VERSION=current KITCHEN_LOCAL_YAML=.kitchen.dokken.yml
     - env: INSTANCE=centos-7 CHEF_VERSION=current KITCHEN_LOCAL_YAML=.kitchen.dokken.yml
diff --git a/recipes/minimize_access.rb b/recipes/minimize_access.rb
index 10b69e3e..9c58f6fb 100644
--- a/recipes/minimize_access.rb
+++ b/recipes/minimize_access.rb
@@ -37,7 +37,7 @@
   when 'rhel', 'fedora', 'amazon'
     group 'root'
     mode '0000'
-  when 'debian'
+  when 'debian', 'suse'
     group 'shadow'
     mode '0640'
   else