Article ID: 116837, created on Aug 20, 2013, last review on May 11, 2014

  • Applies to:
  • Virtuozzo
  • Virtuozzo containers for Linux
  • Virtuozzo hypervisor


Connection to vsFTPd running in SLES 9 or 10 container fails with the following error:

~# ftp
Connected to
220 (vsFTPd 2.0.4)
Name ( 
331 Please specify the password.
500 OOPS: cap_set_proc
ftp: Login failed.
ftp> ^D
230 Login successful.


vsFTPd first does privilege drop to the user nobody and then tries to set capability for the process to bind to ports as the service - this is in order to use the port 20 for data connection. However in kernels 2.6.32 and later, this does not work due to more strict security checks.


Change the option connect_from_port_20 to value NO from the default value YES and restart the service:

~# sed '/^connect_from_port_20/ s~=YES~=NO~' -i /etc/vsftpd.conf
~# service vsftpd restart

If there is custom template installed on the node then check the technologies for the OS template, it should contain sysfs. Correct the custom template if it is missing:

~# vzpkg info sles-10-x86_64 technologies
        x86_64 nptl sysfs 

Search Words




a26b38f94253cdfbf1028d72cf3a498b 2897d76d56d2010f4e3a28f864d69223 e8e50b42231236b82df27684e7ec0beb d02f9caf3e11b191a38179103495106f 0dd5b9380c7d4884d77587f3eb0fa8ef

Email subscription for changes to this article
Save as PDF