{ domain httpd_t; allow /dev/* r,w;In above, httpd_t can access normal files under /dev, but can not access device files.
{ domain httpd_t; allowdev -root /dev; allow /dev/* r,w;In above, httpd_t can access both normal files and devices under /dev. However, in permission w, creation and remove devices are not granted unless allowpriv devcreate is described.