secon(1) — Linux manual page

NAME | SYNOPSIS | DESCRIPTION | SEE ALSO | AUTHORS | COLOPHON

SECON(1)                           NSA                          SECON(1)

NAME         top

       secon - See an SELinux context, from a file, program or user
       input.

SYNOPSIS         top

       secon [-hVurtscmPRfLp] [CONTEXT]
       [--file] FILE
       [--link] FILE
       [--pid] PID

DESCRIPTION         top

       See a part of a context. The context is taken from a file, pid,
       user input or the context in which secon is originally executed.

       -V, --version
              shows the current version of secon

       -h, --help
              shows the usage information for secon

       -P, --prompt
              outputs data in a format suitable for a prompt

       -C, --color
              outputs data with the associated ANSI color codes
              (requires -P)

       -u, --user
              show the user of the security context

       -r, --role
              show the role of the security context

       -t, --type
              show the type of the security context

       -s, --sensitivity
              show the sensitivity level of the security context

       -c, --clearance
              show the clearance level of the security context

       -m, --mls-range
              show the sensitivity level and clearance, as a range, of
              the security context

       -R, --raw
              outputs  the sensitivity level and clearance in an
              untranslated format.

       -f, --file
              gets the context from the specified file FILE

       -L, --link
              gets the context from the specified file FILE (doesn't
              follow symlinks)

       -p, --pid
              gets the context from the specified process PID

       --pid-exec
              gets the exec context from the specified process PID

       --pid-fs
              gets the fscreate context from the specified process PID

       --pid-key
              gets the key context from the specified process PID

       --current, --self
              gets the context from the current process

       --current-exec, --self-exec
              gets the exec context from the current process

       --current-fs, --self-fs
              gets the fscreate context from the current process

       --current-key, --self-key
              gets the key context from the current process

       --parent
              gets the context from the parent of the current process

       --parent-exec
              gets the exec context from the parent of the current
              process

       --parent-fs
              gets the fscreate context from the parent of the current
              process

       --parent-key
              gets the key context from the parent of the current
              process

       Additional argument CONTEXT may be provided and will be used if
       no options have been specified to make secon get its context from
       another source.  If that argument is - then the context will be
       read from stdin.
       If there is no argument, secon will try reading a context from
       stdin, if that is not a tty, otherwise secon will act as though
       --self had been passed.

       If none of --user, --role, --type, --level or --mls-range is
       passed.  Then all of them will be output.

SEE ALSO         top

       chcon(1)

AUTHORS         top

       James Antill (james.antill@redhat.com)

COLOPHON         top

       This page is part of the selinux (Security-Enhanced Linux user-
       space libraries and tools) project.  Information about the
       project can be found at 
       ⟨https://github.com/SELinuxProject/selinux/wiki⟩.  If you have a
       bug report for this manual page, see
       ⟨https://github.com/SELinuxProject/selinux/wiki/Contributing⟩.
       This page was obtained from the project's upstream Git repository
       ⟨https://github.com/SELinuxProject/selinux⟩ on 2024-06-14.  (At
       that time, the date of the most recent commit that was found in
       the repository was 2023-05-11.)  If you discover any rendering
       problems in this HTML version of the page, or you believe there
       is a better or more up-to-date source for the page, or you have
       corrections or improvements to the information in this COLOPHON
       (which is not part of the original manual page), send a mail to
       man-pages@man7.org

Security Enhanced Linux        April 2006                       SECON(1)