Due to my determination to keep SELinux in “enforcing” mode, I tend to run into issues that require troubleshooting the security system. While I can remember getenforce or setenforce, I tend to forget some of the other available tools.
tail -f /var/log/audit/audit.log
# /var/log/messages is still useful, but audit.log has more details
# found this one today; may be handy at times
# I can never remember that darn Z
# dump the settings
# change a setting
# restore default security contexts
This is a personal website. Unless otherwise stated, the content and opinions expressed here are my own and not those of my employer.