NAME | SYNOPSIS | DESCRIPTION | SEE ALSO | AUTHORS | COLOPHON |
|
|
SECON(1) NSA SECON(1)
secon - See an SELinux context, from a file, program or user input.
secon [-hVurtscmPRfLp] [CONTEXT] [--file] FILE [--link] FILE [--pid] PID
See a part of a context. The context is taken from a file, pid, user input or the context in which secon is originally executed. -V, --version shows the current version of secon -h, --help shows the usage information for secon -P, --prompt outputs data in a format suitable for a prompt -C, --color outputs data with the associated ANSI color codes (requires -P) -u, --user show the user of the security context -r, --role show the role of the security context -t, --type show the type of the security context -s, --sensitivity show the sensitivity level of the security context -c, --clearance show the clearance level of the security context -m, --mls-range show the sensitivity level and clearance, as a range, of the security context -R, --raw outputs the sensitivity level and clearance in an untranslated format. -f, --file gets the context from the specified file FILE -L, --link gets the context from the specified file FILE (doesn't follow symlinks) -p, --pid gets the context from the specified process PID --pid-exec gets the exec context from the specified process PID --pid-fs gets the fscreate context from the specified process PID --pid-key gets the key context from the specified process PID --current, --self gets the context from the current process --current-exec, --self-exec gets the exec context from the current process --current-fs, --self-fs gets the fscreate context from the current process --current-key, --self-key gets the key context from the current process --parent gets the context from the parent of the current process --parent-exec gets the exec context from the parent of the current process --parent-fs gets the fscreate context from the parent of the current process --parent-key gets the key context from the parent of the current process Additional argument CONTEXT may be provided and will be used if no options have been specified to make secon get its context from another source. If that argument is - then the context will be read from stdin. If there is no argument, secon will try reading a context from stdin, if that is not a tty, otherwise secon will act as though --self had been passed. If none of --user, --role, --type, --level or --mls-range is passed. Then all of them will be output.
chcon(1)
James Antill ([email protected])
This page is part of the selinux (Security-Enhanced Linux user-
space libraries and tools) project. Information about the
project can be found at
⟨https://github.com/SELinuxProject/selinux/wiki⟩. If you have a
bug report for this manual page, see
⟨https://github.com/SELinuxProject/selinux/wiki/Contributing⟩.
This page was obtained from the project's upstream Git repository
⟨https://github.com/SELinuxProject/selinux⟩ on 2024-06-14. (At
that time, the date of the most recent commit that was found in
the repository was 2023-05-11.) If you discover any rendering
problems in this HTML version of the page, or you believe there
is a better or more up-to-date source for the page, or you have
corrections or improvements to the information in this COLOPHON
(which is not part of the original manual page), send a mail to
[email protected]
Security Enhanced Linux April 2006 SECON(1)