Bash Cures Cancer
Learn the UNIX/Linux command line

Home     Man Pages     SpamDefeator 


setfiles(8)							  setfiles(8)



NAME
       setfiles - set file security contexts.


SYNOPSIS
       setfiles	 [-d] [-l] [-n] [-e directory ] [-o filename ] [-q] [-s] [-v]
       [-vv] [-W] [ spec_file pathname...

DESCRIPTION
       This manual page describes the setfiles program.

       This program is primarily used  to  initialise  the  security  context
       database	 (extended attributes) on one or more filesystems.  This pro-
       gram is initially run as part of the SE Linux installation process.

       It can also be run at any time to correct errors, to add	 support  for
       new  policy,  or with the -n option it can just check whether the file
       contexts are all as you expect.


OPTIONS
       -d     show what specification matched each file.

       -l     log changes in file labels to syslog.

       -n     don't change any file labels.

       -q     suppress non-error output.

       -e directory
	      directory to exclude (repeat option for more  than  one  direc-
	      tory.)

       -F     Force reset of context to match file_context

       -o filename
	      save list of files with incorrect context in filename.

       -s     take  a  list  of	 files from standard input instead of using a
	      pathname on the command line.

       -v     show changes in file labels, if type or role are changing.

       -vv    show changes in file labels, if type, role, or user are  chang-
	      ing.

       -W     display warnings about entries that had no matching files.


ARGUMENTS
       spec_file The specification file which contains lines of the following
       form
       regexp [ -type ] ( context | <> )
       The regular expression is anchored at both ends.	  The  optional	 type
       field  specifies the file type as shown in the mode field by the ls(1)
       program, e.g. -- to match only regular  files  or  -d  to  match	 only
       directories.   The  context can be an ordinary security context or the
       string <> to specify that the file is not to  have	 its  context
       changed.
       The  last  matching  specification is used. If there are multiple hard
       links to a file that match different specifications and those specifi-
       cations	indicate  different  security  contexts,  then	a  warning is
       displayed but the file is still labeled based  on  the  last  matching
       specification other than <>.

       pathname...
	      The  pathname  for the root directory of each file system to be
	      relabeled.  Not used if the -s option is used.


AUTHOR
       This man page was written  by  Russell  Coker  .
       The program was written by Stephen Smalley 


SEE ALSO
       load_policy(8), checkpolicy(8)



				  2002031409			  setfiles(8)


UNIX/Linux commands referenced on this page:
  1. file
  2. more
  3. as
  4. at
  5. time
  6. reset
  7. display
  8. which
  9. last
  10. links
  11. man