Index Return to Main Contents
NAMErestorecon - restore file(s) default SELinux security contexts.
SYNOPSISrestorecon [-o outfilename ] [-R] [-n] [-p] [-v] [-e directory ] pathname... restorecon -f infilename [-o outfilename ] [-e directory ] [-R] [-n] [-p] [-v] [-F]
DESCRIPTIONThis manual page describes the restorecon program. This program is primarily used to reset the security context (type) (extended attributes) on one or more files. It can be run at any time to correct errors, to add support for new policy, or with the -n option it can just check whether the file contexts are all as you expect. If a file object does not have a context, restorecon will write the default context to the file object's extended attributes. If a file object has a context, restorecon will only modify the type portion of the security context. The -F option will force a replacement of the entire context.
- ignore files that do not exist
- -f infilename
- infilename contains a list of files to be processed by application. Use - for stdin.
- -e directory
- directory to exclude (repeat option for more than one directory.)
- -R -r
- change files and directories file labels recursively
- don't change any file labels.
- -o outfilename
- save list of files with incorrect context in outfilename.
- show progress by printing * every 1000 files.
- show changes in file labels.
- Force reset of context to match file_context for customizable files, and the default file context, changing the user, role, range portion as well as the type.
NOTErestorecon does not follow symbolic links.
AUTHORThis man page was written by Dan Walsh <[email protected]>. Some of the content of this man page was taken from the setfiles man page written by Russell Coker <[email protected]>. The program was written by Dan Walsh <[email protected]>.
SEE ALSOload_policy(8), checkpolicy(8) setfiles(8)
This document was created by man2html, using the manual pages.
Time: 05:34:29 GMT, December 24, 2015