From bdbf5bd8504676f7b066190978457c29b7a6bf62 Mon Sep 17 00:00:00 2001
From: Logvinov Alecksey <alecksey@yandex.ru>
Date: Sun, 28 Jun 2020 21:29:50 +0300
Subject: [PATCH] 'fix'

---
 README.md | 1 +
 globus.te | 6 +++---
 2 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/README.md b/README.md
index 6dbd3f6..74083b2 100644
--- a/README.md
+++ b/README.md
@@ -8,4 +8,5 @@ checkmodule -M -m -o globus.mod globus.te
 sudo semodule_package -o globus.pp -m globus.mod
 sudo semodule -i globus.pp
 rm -f globus.*
+setsebool -P domain_can_mmap_files 1
 ```
\ No newline at end of file
diff --git a/globus.te b/globus.te
index 310a828..1c3a2c5 100644
--- a/globus.te
+++ b/globus.te
@@ -13,13 +13,13 @@ require {
     type public_content_rw_t;
     type unreserved_port_t;
     class tcp_socket name_connect;
-    class dir { create rename reparent rmdir };
+    class dir { add_name create rename reparent rmdir };
     class file { append create execute execute_no_trans lock open read setattr unlink write };
 }
 
 #============= httpd_t =============
 allow httpd_t http_port_t:tcp_socket name_connect;
-#allow httpd_t httpd_config_t:dir add_name;
+allow httpd_t httpd_config_t:dir add_name;
 allow httpd_t httpd_config_t:file {append create};
 
 allow httpd_t smtp_port_t:tcp_socket name_connect;
@@ -33,4 +33,4 @@ allow init_t tmp_t:file unlink;
 allow init_t user_home_t:dir { create rename reparent rmdir };
 allow init_t user_home_t:file { append create execute execute_no_trans lock open read setattr unlink write };
 allow init_t public_content_rw_t:file execute;
-allow init_t public_content_rw_t:file { append create execute open read setattr unlink write };
+allow init_t public_content_rw_t:file { append create execute execute_no_trans lock open read setattr unlink write };