Display the security context associated with files or directories under SELinux kernel

Posted on in Categories , , , , , last updated June 13, 2007

Q. I’m using CentOS Linux server 5 with SELinux enabled kernel. How do I display the security context associated with files or directories under SELinux kernel? Basically I’d like to know which SELinux security context applies to some files or directories.

A.. To get more information about SELinux security context applied to files and directory you need to use patched ls command. CentOS comes with modified (patched) ls command. Following are the SELinux ls command options:

  • –lcontext : Display security context. Enable -l. Lines will probably be too wide for most displays.
  • -Z or –context : Display security context so it fits on most displays. Displays only mode, user, group, security context and file name.
  • –scontext : Display only security context and file name.

Type ls -Z command you will see the SELinux applied security context:
# ls -Z /var
# ls -Z /home
# ls --lcontext /etc

Posted by: Vivek Gite

The author is the creator of nixCraft and a seasoned sysadmin and a trainer for the Linux operating system/Unix shell scripting. He has worked with global clients and in various industries, including IT, education, defense and space research, and the nonprofit sector. Follow him on Twitter, Facebook, Google+.

Share this on:

Leave a Comment