2019-04-11 21:51:59 +01:00
|
|
|
# chcon
|
|
|
|
|
|
|
|
> Change SELinux security context of a file or files/directories.
|
2024-05-27 16:54:20 +01:00
|
|
|
> See also: `secon`, `restorecon`, `semanage-fcontext`.
|
2021-04-01 16:54:26 +01:00
|
|
|
> More information: <https://www.gnu.org/software/coreutils/chcon>.
|
2019-04-11 21:51:59 +01:00
|
|
|
|
|
|
|
- View security context of a file:
|
|
|
|
|
|
|
|
`ls -lZ {{path/to/file}}`
|
|
|
|
|
|
|
|
- Change the security context of a target file, using a reference file:
|
|
|
|
|
|
|
|
`chcon --reference={{reference_file}} {{target_file}}`
|
|
|
|
|
|
|
|
- Change the full SELinux security context of a file:
|
|
|
|
|
|
|
|
`chcon {{user}}:{{role}}:{{type}}:{{range/level}} {{filename}}`
|
|
|
|
|
|
|
|
- Change only the user part of SELinux security context:
|
|
|
|
|
|
|
|
`chcon -u {{user}} {{filename}}`
|
|
|
|
|
|
|
|
- Change only the role part of SELinux security context:
|
|
|
|
|
|
|
|
`chcon -r {{role}} {{filename}}`
|
|
|
|
|
|
|
|
- Change only the type part of SELinux security context:
|
|
|
|
|
|
|
|
`chcon -t {{type}} {{filename}}`
|
|
|
|
|
|
|
|
- Change only the range/level part of SELinux security context:
|
|
|
|
|
|
|
|
`chcon -l {{range/level}} {{filename}}`
|