V-72075 Not Checking if /boot or /boot/efi are on Removable Devices

[Bialogs]

From what I can tell, the call to grubby and subsequent parsing (looking for /^root=/) only looks at what device the root filesystem for that particular boot option, not if the boot loader is actually on removable media. This comes from my interpretation of "If the system is using an alternate boot loader on removable media..."

I was thinking a check to determine if /boot or /boot/efi were on removable media would need to include comparing the device from the output of the set root=($dev,$part) line in grub.cfg to the /sys/block/$dev/removable and confirming it is not removable.

Additionally, the STIG does not say that multiple instances of a grub.cfg are a finding but they may turn into a finding if they exist and the current form of V-72075 does not look for that.