SLES 12 - vsftpd with AppArmor in enforce mode, “lftp†error for “ls†command: `ls' at 0 [500 OOPS: setrlimit]
Clash Royale CLAN TAG#URR8PPP
up vote
1
down vote
favorite
In a virtual machine (VM) with SLES 12 (SUSE Linux Enterprise Server 12), after enforcing ("enforce mode") the AppArmor profile for "vsftpd" to confine it (via the "aa-enforce vsftpd" command), I'm doing a "lftp" session to "localhost", authenticating with the "ftp" user and some password. By doing that, I get the ftp shell prompt (as expected). However, when I run the "ls" command in that ftp shell, I get the following error message:
`ls' at 0 [500 OOPS: setrlimit]
This error does NOT happen when I run vsftpd in "complain mode" / "learning mode" (via "aa-complain vsftpd"): in that case, I do get the expected file and directory listing when I run the "ls" command in the "ftp" shell.
A Google search for "500 OOPS: setrlimit" apparently does not return relevant results.
Could you help me troubleshoot this, please?
In case it's useful, here is the content of my "/etc/apparmor.d/usr.sbin.vsftpd" file:
server:/etc/apparmor.d # cat usr.sbin.vsftpd
# Last Modified: Sun Oct 29 19:55:42 2017
#include <tunables/global>
/usr/sbin/vsftpd
#include <abstractions/apache2-common>
#include <abstractions/base>
capability net_bind_service,
capability setgid,
capability setuid,
capability sys_admin,
capability sys_chroot,
/etc/vsftpd.conf r,
/run/nscd/group r,
/run/nscd/passwd r,
/srv/ftp/ r,
/srv/ftp/* rw,
/srv/ftp/test/ w,
/srv/ftp/upload/* wk,
/usr/sbin/vsftpd mr,
vsftpd sles apparmor vsftp
asked Nov 11 '17 at 17:40
ricmarques
174110
add a comment |Â
up vote
1
down vote
favorite
In a virtual machine (VM) with SLES 12 (SUSE Linux Enterprise Server 12), after enforcing ("enforce mode") the AppArmor profile for "vsftpd" to confine it (via the "aa-enforce vsftpd" command), I'm doing a "lftp" session to "localhost", authenticating with the "ftp" user and some password. By doing that, I get the ftp shell prompt (as expected). However, when I run the "ls" command in that ftp shell, I get the following error message:
`ls' at 0 [500 OOPS: setrlimit]
This error does NOT happen when I run vsftpd in "complain mode" / "learning mode" (via "aa-complain vsftpd"): in that case, I do get the expected file and directory listing when I run the "ls" command in the "ftp" shell.
A Google search for "500 OOPS: setrlimit" apparently does not return relevant results.
Could you help me troubleshoot this, please?
In case it's useful, here is the content of my "/etc/apparmor.d/usr.sbin.vsftpd" file:
server:/etc/apparmor.d # cat usr.sbin.vsftpd
# Last Modified: Sun Oct 29 19:55:42 2017
#include <tunables/global>
/usr/sbin/vsftpd
#include <abstractions/apache2-common>
#include <abstractions/base>
capability net_bind_service,
capability setgid,
capability setuid,
capability sys_admin,
capability sys_chroot,
/etc/vsftpd.conf r,
/run/nscd/group r,
/run/nscd/passwd r,
/srv/ftp/ r,
/srv/ftp/* rw,
/srv/ftp/test/ w,
/srv/ftp/upload/* wk,
/usr/sbin/vsftpd mr,
vsftpd sles apparmor vsftp
asked Nov 11 '17 at 17:40
ricmarques
174110
add a comment |Â
up vote
1
down vote
favorite
up vote
1
down vote
favorite
In a virtual machine (VM) with SLES 12 (SUSE Linux Enterprise Server 12), after enforcing ("enforce mode") the AppArmor profile for "vsftpd" to confine it (via the "aa-enforce vsftpd" command), I'm doing a "lftp" session to "localhost", authenticating with the "ftp" user and some password. By doing that, I get the ftp shell prompt (as expected). However, when I run the "ls" command in that ftp shell, I get the following error message:
`ls' at 0 [500 OOPS: setrlimit]
This error does NOT happen when I run vsftpd in "complain mode" / "learning mode" (via "aa-complain vsftpd"): in that case, I do get the expected file and directory listing when I run the "ls" command in the "ftp" shell.
A Google search for "500 OOPS: setrlimit" apparently does not return relevant results.
Could you help me troubleshoot this, please?
In case it's useful, here is the content of my "/etc/apparmor.d/usr.sbin.vsftpd" file:
server:/etc/apparmor.d # cat usr.sbin.vsftpd
# Last Modified: Sun Oct 29 19:55:42 2017
#include <tunables/global>
/usr/sbin/vsftpd
#include <abstractions/apache2-common>
#include <abstractions/base>
capability net_bind_service,
capability setgid,
capability setuid,
capability sys_admin,
capability sys_chroot,
/etc/vsftpd.conf r,
/run/nscd/group r,
/run/nscd/passwd r,
/srv/ftp/ r,
/srv/ftp/* rw,
/srv/ftp/test/ w,
/srv/ftp/upload/* wk,
/usr/sbin/vsftpd mr,
vsftpd sles apparmor vsftp
asked Nov 11 '17 at 17:40
ricmarques
174110
In a virtual machine (VM) with SLES 12 (SUSE Linux Enterprise Server 12), after enforcing ("enforce mode") the AppArmor profile for "vsftpd" to confine it (via the "aa-enforce vsftpd" command), I'm doing a "lftp" session to "localhost", authenticating with the "ftp" user and some password. By doing that, I get the ftp shell prompt (as expected). However, when I run the "ls" command in that ftp shell, I get the following error message:
`ls' at 0 [500 OOPS: setrlimit]
This error does NOT happen when I run vsftpd in "complain mode" / "learning mode" (via "aa-complain vsftpd"): in that case, I do get the expected file and directory listing when I run the "ls" command in the "ftp" shell.
A Google search for "500 OOPS: setrlimit" apparently does not return relevant results.
Could you help me troubleshoot this, please?
In case it's useful, here is the content of my "/etc/apparmor.d/usr.sbin.vsftpd" file:
server:/etc/apparmor.d # cat usr.sbin.vsftpd
# Last Modified: Sun Oct 29 19:55:42 2017
#include <tunables/global>
/usr/sbin/vsftpd
#include <abstractions/apache2-common>
#include <abstractions/base>
capability net_bind_service,
capability setgid,
capability setuid,
capability sys_admin,
capability sys_chroot,
/etc/vsftpd.conf r,
/run/nscd/group r,
/run/nscd/passwd r,
/srv/ftp/ r,
/srv/ftp/* rw,
/srv/ftp/test/ w,
/srv/ftp/upload/* wk,
/usr/sbin/vsftpd mr,
vsftpd sles apparmor vsftp
asked Nov 11 '17 at 17:40
ricmarques
174110
asked Nov 11 '17 at 17:40
ricmarques
174110
asked Nov 11 '17 at 17:40
ricmarques
174110
asked Nov 11 '17 at 17:40
ricmarques
174110
174110
add a comment |Â
add a comment |Â
active
oldest
votes
active
oldest
votes
active
oldest
votes
active
oldest
votes
active
oldest
votes
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f403931%2fsles-12-vsftpd-with-apparmor-in-enforce-mode-lftp-error-for-ls-command%23new-answer', 'question_page');
);
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
