From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from goalie.tycho.ncsc.mil (goalie [144.51.242.250])
 by tarius.tycho.ncsc.mil (8.14.4/8.14.4) with ESMTP id s6E6nYw0014069
 for <selinux@tycho.nsa.gov>; Mon, 14 Jul 2014 02:49:34 -0400
Message-ID: <53C37D83.9050705@davequigley.com>
Date: Mon, 14 Jul 2014 02:49:39 -0400
From: Dave Quigley <selinux@davequigley.com>
MIME-Version: 1.0
To: selinux@tycho.nsa.gov
Subject: Showing port Labels
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
List-Id: "Security-Enhanced Linux \(SELinux\) mailing list"
 <selinux.tycho.nsa.gov>
List-Post: <mailto:selinux@tycho.nsa.gov>
List-Help: <mailto:selinux-request@tycho.nsa.gov?subject=help>

I am working on some slides for my workshop at oscon and I tried to find 
the context of a port a process is listening on. If I do netstat -lZ I 
see all the listening ports and a security context. However, it seems 
the security context is the context of the process that is listening on 
that port not the context of the port itself. Is there a way to see the 
context of the port itself? I don't see any other option that might give 
that information. Is there a way to get that information from proc? Or 
are the only components that know the context of a port the kernel and 
the policy store?