From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1LRWLs-0005QI-1R for garchives@archives.gentoo.org; Mon, 26 Jan 2009 18:38:28 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id D8C3BE03FF; Mon, 26 Jan 2009 18:38:26 +0000 (UTC) Received: from yw-out-1718.google.com (yw-out-1718.google.com [74.125.46.158]) by pigeon.gentoo.org (Postfix) with ESMTP id B412CE03FF for ; Mon, 26 Jan 2009 18:38:26 +0000 (UTC) Received: by yw-out-1718.google.com with SMTP id 5so2421004ywm.46 for ; Mon, 26 Jan 2009 10:38:26 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=RvMhCu+rHQ+t6HjqpWGw4yDMWeiyu16dS79YQotzZ1c=; b=PxR/HKgmr7Z/ZuDuF4wTHnj5TxLzjaoZz7+iYEliP+CmTQCrUz1SHowjmz5LXJxiUW nZEgfFqPDB42FU1OuwZP7IGBOv5x18qSri9lzUxzwvomA0l4JQ4Nn4YrHwyWAzO/X6sD SVPGJdsyDkl1suqUQFZWAQYhFJWzIgCenuvhU= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; b=Q5NRZOwv0AHnWlhI21fdZj8XVzuhB1CUuyfKvzVSB5ZzQUdfkfMqXODB+gBK96Cd5U pyrhgwnYUGFLXrDE1gjM/C2Jpz+vLN4+AJrUhxJ7pTtXHZf7Ypqs6N8Clwec+WKtISxj 2Ea8h3laA2IQBoT3xJ7QheYLOUOzzqCb3yeIc= Received: by 10.100.143.17 with SMTP id q17mr5879666and.29.1232995106269; Mon, 26 Jan 2009 10:38:26 -0800 (PST) Received: from ?4.231.91.236? (dialup-4.231.91.236.Dial1.Houston1.Level3.net [4.231.91.236]) by mx.google.com with ESMTPS id 6sm586791ywc.49.2009.01.26.10.38.24 (version=SSLv3 cipher=RC4-MD5); Mon, 26 Jan 2009 10:38:25 -0800 (PST) Message-ID: <497E031D.9020107@gmail.com> Date: Mon, 26 Jan 2009 12:38:21 -0600 From: Dale User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.19) Gecko/20081227 SeaMonkey/1.1.14 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Wireshark on Gentoo References: <49bf44f10901261025h10123b94o31a86b1092d4a15a@mail.gmail.com> In-Reply-To: <49bf44f10901261025h10123b94o31a86b1092d4a15a@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Archives-Salt: ec8c3b5c-bbce-4c72-b5d4-c02020c6dc50 X-Archives-Hash: 84c3baa0218880195b917d917a3e010f Grant wrote: > I'm confused on how to run wireshark on Gentoo. The ebuild says: > > * With version 0.99.7, all function calls that require elevated privileges > * have been moved out of the GUI to dumpcap. WIRESHARK CONTAINS OVER ONE > * POINT FIVE MILLION LINES OF SOURCE CODE. DO NOT RUN THEM AS ROOT. > * > * NOTE: To run wireshark as normal user you have to add yourself into > * wireshark group. This security measure ensures that only trusted > * users allowed to sniff your traffic. > > I added my user to the wireshark group, but there are no interfaces > listed in the program. I read: > > http://wiki.wireshark.org/CaptureSetup/CapturePrivileges > > "Running Wireshark (or any other network capture/analyzer, for that > matter) on Linux needs root privileges. Therefore, you have to have > root privileges when starting Wireshark, else you can't capture data." > > I'm not sure how to proceed. > > - Grant > > > Works as a user here. Here is some info to compare against. root@smoker / # emerge -pv wireshark These are the packages that would be merged, in order: Calculating dependencies... done! [ebuild R ] net-analyzer/wireshark-1.0.5 USE="caps gtk ipv6 pcap pcre zlib -adns -gcrypt -gnutls -kerberos -lua -portaudio -profile (-selinux) -smi -threads" 0 kB Total: 1 package (1 reinstall), Size of downloads: 0 kB root@smoker / # cat /etc/group | grep wireshark wireshark:x:444:dale root@smoker / # Hope that helps. Dale :-) :-)