Detailed explanation of the setcap command. In Linux, the most common use of the setcap command is to restrict the use of ports above 1024, also known as privileged ports. Port restrictions can be performed without going through a firewall. The main purpose is to divide the privileges of the root user, that is, to divide the root privileges into different capabilities, each of which represents a certain privileged operation.