diff options
author | Luiz Carlos Ramos <lramos.prof@yahoo.com.br> | 2019-11-01 07:40:02 +0700 |
---|---|---|
committer | Willy Sudiarto Raharjo <willysr@slackbuilds.org> | 2019-11-01 07:40:02 +0700 |
commit | 73a685477552e8a1668452c03e211bba9cd40de9 (patch) | |
tree | ad495f17ca5206015ae0ab95561b5291aabbe7e3 /network/wireshark/README | |
parent | fa63a63e68e201c33c22c21ddc360f98f2ebb2d6 (diff) |
network/wireshark: Update README.
Signed-off-by: Willy Sudiarto Raharjo <willysr@slackbuilds.org>
Diffstat (limited to 'network/wireshark/README')
-rw-r--r-- | network/wireshark/README | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/network/wireshark/README b/network/wireshark/README index 65c3490f7466a..43e6e37efc3c2 100644 --- a/network/wireshark/README +++ b/network/wireshark/README @@ -18,6 +18,23 @@ start wireshark as a normal user, while still providing it with all of the access permissions it requires, is by issuing the following command: $ setcap cap_net_raw,cap_net_admin=eip /usr/bin/dumpcap +One may also test if things are ok running this command as a normal user: + + $ dumpcap -L + +You may also create a special group (wireshark) and include users allowed +to monitor networks in that group: + + # groupadd wireshark + # usermod -a -G wireshark <user> + # chgrp wireshark /usr/bin/dumpcap + # chmod 750 /usr/bin/dumpcap + # setcap cap_net_raw,cap_net_admin=eip /usr/bin/dumpcap + $ newgrp wireshark + +Other users not in the group wireshark can still open files with previously +saved monitorings and inspect them. + You will need to remove any already-installed wireshark package before building this one or else the new one will not work (the new build will link libraries present in the old package, which will then be removed |