<div dir="ltr"><div><div><div><div><div><div>Hi !<br><br></div>I fixed geeklog (php CMS) source and put some shell script with geeklog SELinux module and made them a tar-ball.<br><br></div>There are logs directory in geeklog and php fopen wants to write its log.<br>
<br></div>I don't want to allow httpd_t write to httpd_log_t so, I wrote geeklog.fc and made a module only to allow write the very directory.<br><br></div>I set httpd_sys_rw_content_t to geeklog's logs directory, backups and data directories.<br>
<br></div>Maybe I should set httpd_sys_rw_content images directory, too.<br><br></div>Those informations will be seen at<br><div><div><div><br><a href="https://sourceforge.net/projects/webon/files/geeklog_for_SELinux/" target="_blank">http://sourceforge.net/projects/webon/files/geeklog_for_SELinux/</a><br>
</div></div></div></div>