Hi !
I fixed geeklog (php CMS) source and put some shell script with geeklog SELinux module and made them a tar-ball.
There are logs directory in geeklog and php fopen wants to write its log.
I don't want to allow httpd_t write to httpd_log_t so, I wrote geeklog.fc and made a module only to allow write the very directory.
I set httpd_sys_rw_content_t to geeklog's logs directory, backups and data directories.
Maybe I should set httpd_sys_rw_content images directory, too.