Manage SELinux Contexts - Control File Security | Online Free DevTools by Hexmos
Control SELinux file contexts with semanage-fcontext. Manage persistent security rules, define file labels using PCRE regex, and recursively relabel directories. Free online tool, no registration required.
semanage fcontext
Manage persistent SELinux security context rules on files/directories. See also:
semanage,matchpathcon,secon,chcon,restorecon. More information: https://manned.org/semanage-fcontext.
- List all file labelling rules:
sudo semanage fcontext {{[-l|--list]}}
- List all user-defined file labelling rules without headings:
sudo semanage fcontext {{[-l|--list]}} {{[-C|--locallist]}} {{[-n|--noheading]}}
- Add a user-defined rule that labels any path which matches a PCRE
regex:
sudo semanage fcontext {{[-a|--add]}} {{[-t|--type]}} {{samba_share_t}} {{'/mnt/share(/.*)?'}}
- Delete a user-defined rule using its PCRE
regex:
sudo semanage fcontext {{[-d|--delete]}} {{'/mnt/share(/.*)?'}}
- Relabel a directory recursively by applying the new rules:
restorecon -R -v {{path/to/directory}}