2025-03-14 21:59:59 -06:00
|
|
|
# chcon
|
|
|
|
|
|
|
|
|
|
> Change SELinux security context of a file or files/directories.
|
|
|
|
|
> See also: `secon`, `restorecon`, `semanage-fcontext`.
|
|
|
|
|
> More information: <https://www.gnu.org/software/coreutils/manual/html_node/chcon-invocation.html>.
|
|
|
|
|
|
|
|
|
|
- View security context of a file:
|
|
|
|
|
|
2025-04-03 20:36:56 -06:00
|
|
|
`ls {{[-lZ|-l --context]}} {{path/to/file}}`
|
2025-03-14 21:59:59 -06:00
|
|
|
|
|
|
|
|
- Change the security context of a target file, using a reference file:
|
|
|
|
|
|
2025-04-03 20:36:56 -06:00
|
|
|
`chcon --reference {{reference_file}} {{target_file}}`
|
2025-03-14 21:59:59 -06:00
|
|
|
|
|
|
|
|
- Change the full SELinux security context of a file:
|
|
|
|
|
|
|
|
|
|
`chcon {{user}}:{{role}}:{{type}}:{{range/level}} {{filename}}`
|
|
|
|
|
|
|
|
|
|
- Change only the user part of SELinux security context:
|
|
|
|
|
|
2025-04-03 20:36:56 -06:00
|
|
|
`chcon {{[-u|--user]}} {{user}} {{filename}}`
|
2025-03-14 21:59:59 -06:00
|
|
|
|
|
|
|
|
- Change only the role part of SELinux security context:
|
|
|
|
|
|
2025-04-03 20:36:56 -06:00
|
|
|
`chcon {{[-r|--role]}} {{role}} {{filename}}`
|
2025-03-14 21:59:59 -06:00
|
|
|
|
|
|
|
|
- Change only the type part of SELinux security context:
|
|
|
|
|
|
2025-04-03 20:36:56 -06:00
|
|
|
`chcon {{[-t|--type]}} {{type}} {{filename}}`
|
2025-03-14 21:59:59 -06:00
|
|
|
|
|
|
|
|
- Change only the range/level part of SELinux security context:
|
|
|
|
|
|
2025-04-03 20:36:56 -06:00
|
|
|
`chcon {{[-l|--range]}} {{range/level}} {{filename}}`
|
