From Fedora Project Wiki

< SELinux

Revision as of 16:26, 24 May 2008 by Ravidiip (talk | contribs) (1 revision(s))

The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

Find command

The find command has a powerful SELinux option "-context". This allows you to search for files matching a certain context. It uses a "glob" syntax to you can execute a command like 

find /etc -context '*net_conf_t'
/etc/sysconfig/networking/profiles/default/resolv.conf
/etc/resolv.conf.windham
/etc/resolv.conf.comcast
/etc/ntp.conf
/etc/ntp/step-tickers
/etc/resolv.conf.old
/etc/yp.conf
/etc/resolv.conf.redhat
/etc/resolv.conf

To find all the files labeled with type net_conf_t.

Another handy find option is: 

find /etc -context "*net_conf_t" -printf "%p %Z\n"
/etc/sysconfig/networking/profiles/default/resolv.conf system_u:object_r:net_conf_t
/etc/resolv.conf.windham system_u:object_r:net_conf_t
/etc/resolv.conf.comcast system_u:object_r:net_conf_t
/etc/ntp.conf system_u:object_r:net_conf_t
/etc/ntp/step-tickers system_u:object_r:net_conf_t
/etc/resolv.conf.old system_u:object_r:net_conf_t
/etc/yp.conf root:object_r:net_conf_t
/etc/resolv.conf.redhat system_u:object_r:net_conf_t
/etc/resolv.conf system_u:object_r:net_conf_t
Retrieved from "https://fedoraproject.org/w/index.php?title=SELinux/Find&oldid=2595"