aboutsummaryrefslogtreecommitdiff
path: root/network/wireshark/README
diff options
context:
space:
mode:
authorLuiz Carlos Ramos <lramos.prof@yahoo.com.br>2019-11-01 07:40:02 +0700
committerWilly Sudiarto Raharjo <willysr@slackbuilds.org>2019-11-01 07:40:02 +0700
commit73a685477552e8a1668452c03e211bba9cd40de9 (patch)
treead495f17ca5206015ae0ab95561b5291aabbe7e3 /network/wireshark/README
parentfa63a63e68e201c33c22c21ddc360f98f2ebb2d6 (diff)
network/wireshark: Update README.
Signed-off-by: Willy Sudiarto Raharjo <willysr@slackbuilds.org>
Diffstat (limited to 'network/wireshark/README')
-rw-r--r--network/wireshark/README17
1 files changed, 17 insertions, 0 deletions
diff --git a/network/wireshark/README b/network/wireshark/README
index 65c3490f7466a..43e6e37efc3c2 100644
--- a/network/wireshark/README
+++ b/network/wireshark/README
@@ -18,6 +18,23 @@ start wireshark as a normal user, while still providing it with all of the
access permissions it requires, is by issuing the following command:
$ setcap cap_net_raw,cap_net_admin=eip /usr/bin/dumpcap
+One may also test if things are ok running this command as a normal user:
+
+ $ dumpcap -L
+
+You may also create a special group (wireshark) and include users allowed
+to monitor networks in that group:
+
+ # groupadd wireshark
+ # usermod -a -G wireshark <user>
+ # chgrp wireshark /usr/bin/dumpcap
+ # chmod 750 /usr/bin/dumpcap
+ # setcap cap_net_raw,cap_net_admin=eip /usr/bin/dumpcap
+ $ newgrp wireshark
+
+Other users not in the group wireshark can still open files with previously
+saved monitorings and inspect them.
+
You will need to remove any already-installed wireshark package before
building this one or else the new one will not work (the new build will
link libraries present in the old package, which will then be removed