Linux · SELinux & AppArmor

In SELinux terminology, what is a process's context called, how do you view it, and which part of the context do most rules actually care about?

Sign in to see the full answer — free to start on the web.

This is one card from the KnowCard library. The full way to learn it — spaced-repetition review, progress tracking, and AI explanations — lives in the KnowCard app, free to start on the web. iOS & Android are coming soon.

Get started — it’s free

Already have an account? Sign in →

More in SELinux & AppArmor

A daemon already runs under its own restricted account with the right rwx permissions, yet you also want the kernel to stop it touching directories it has no business in even if it is hijacked. What extra layer provides this?
When a running process violates an SELinux rule, many people assume SELinux kills the offending program. What does it actually do?
Administrators frequently switch SELinux off the moment the first problem appears. What two structural criticisms of SELinux drive that reaction?
SELinux is described as resting on two pillars. What are they, and why is the first pillar useless without correct data?
You want to see the SELinux context of a file. Which command shows it, and where is that context physically stored?
A file ended up with the wrong SELinux context. You reach for restorecon vs chcon — what is the practical difference between the two?