1SECON(1)                              NSA                             SECON(1)
2
3
4

NAME

6       secon - See an SELinux context, from a file, program or user input.
7

SYNOPSIS

9       secon [-hVurtscmPRfLp] [CONTEXT]
10       [--file] FILE
11       [--link] FILE
12       [--pid] PID
13

DESCRIPTION

15       See  a  part  of a context. The context is taken from a file, pid, user
16       input or the context in which secon is originally executed.
17
18       -V, --version
19              shows the current version of secon
20
21       -h, --help
22              shows the usage information for secon
23
24       -P, --prompt
25              outputs data in a format suitable for a prompt
26
27       -C, --color
28              outputs data with the associated ANSI color codes (requires -P)
29
30       -u, --user
31              show the user of the security context
32
33       -r, --role
34              show the role of the security context
35
36       -t, --type
37              show the type of the security context
38
39       -s, --sensitivity
40              show the sensitivity level of the security context
41
42       -c, --clearance
43              show the clearance level of the security context
44
45       -m, --mls-range
46              show the sensitivity level and clearance, as  a  range,  of  the
47              security context
48
49       -R, --raw
50              outputs   the sensitivity level and clearance in an untranslated
51              format.
52
53       -f, --file
54              gets the context from the specified file FILE
55
56       -L, --link
57              gets the context from the specified file  FILE  (doesn't  follow
58              symlinks)
59
60       -p, --pid
61              gets the context from the specified process PID
62
63       --pid-exec
64              gets the exec context from the specified process PID
65
66       --pid-fs
67              gets the fscreate context from the specified process PID
68
69       --pid-key
70              gets the key context from the specified process PID
71
72       --current, --self
73              gets the context from the current process
74
75       --current-exec, --self-exec
76              gets the exec context from the current process
77
78       --current-fs, --self-fs
79              gets the fscreate context from the current process
80
81       --current-key, --self-key
82              gets the key context from the current process
83
84       --parent
85              gets the context from the parent of the current process
86
87       --parent-exec
88              gets the exec context from the parent of the current process
89
90       --parent-fs
91              gets the fscreate context from the parent of the current process
92
93       --parent-key
94              gets the key context from the parent of the current process
95
96       Additional  argument  CONTEXT  may  be  provided and will be used if no
97       options have been specified to make secon get its context from  another
98       source.   If  that  argument  is  -  then the context will be read from
99       stdin.
100       If there is no argument, secon will try reading a context  from  stdin,
101       if  that  is  not  a tty, otherwise secon will act as though --self had
102       been passed.
103
104       If none of --user, --role, --type, --level or  --mls-range  is  passed.
105       Then all of them will be output.
106

SEE ALSO

108       chcon(1)
109

AUTHORS

111       James Antill (james.antill@redhat.com)
112
113
114
115Security Enhanced Linux           April 2006                          SECON(1)