Or, go to the Wireshark toolbar and select the red Stop button that's located next to the shark fin. Select File > Save As or choose an Export option to record the capture. Versions after 1.8.2 do not seem to be available without compilation and there seem to be some issues with libraries in 12.04. Select the shark fin on the left side of the Wireshark toolbar, press Ctrl+E, or double-click the network. Are PPA's safe to add to my system and what are some "red flags" to watch out for?.I recommend taking a look to see if your desired backport/package might be included here. Packages for two last LTS releases and latest pre-LTS release(including smartgit, among others). This repository contains collection of customized, updated, ported and backported Note: It is necessary to run the application as sudo since one needs elevated privileges in order to have access to the raw network stack.įor more information, see Eugene San PPA. To start Wireshark, run the command sudo wireshark To install the PPA, run the following commands: sudo add-apt-repository ppa:eugenesan/ppa The following provides instruction for installing wireshark 1.8.2 The latest wireshark version is 1.8.4 and the latest in the Ubuntu 12.04 repositories is 1.6.7. You can install a PPA package that provides Wireshark 1.8.2 to 12.04 rather than compiling from source. Fortunately, there is a PPA(see below) that will allow you to install Wireshark without the need to compile from source. If you are simply looking to be able to sniff multiple interfaces, any version past 1.8.0 will be able do that. When you're back in it should let you start sniffing without any fuss about being root.I would not recommend compiling Wireshark on Ubuntu(it is possible, but there are too many odd library dependencies for the average user to troubleshoot). Run this: sudo adduser $USER wiresharkĪnd restart or log out. Then you just need to add the user to that group. Technically any person with access to a computer logged in with a wireshark account will be able to sniff. This is obviously more secure than just letting anybody sniff but does mean there's no password checking. Anybody in that group will be able to sniff without being root. That's what we're aiming for, so select Yes and hit return. This will ask you if you want to allow non-root user to be able to sniff. In a terminal (very important that you're in a terminal, not just the Alt+F2 dialogue) run this: sudo dpkg-reconfigure wireshark-common
The bit that normally needs root is the packet collection application and this can be configured to allow certain people to use it without sudo, gksu, etc.
0 kommentar(er)
