Wireshark
the world's foremost network protocol analyzer
Wireshark-dev: Re: [Wireshark-dev] WireShark on MAC OS X Leopard 10.5.7
From: Guy Harris <guy@xxxxxxxxxxxx>
Date: Thu, 2 Jul 2009 11:46:25 -0700
On Jul 2, 2009, at 12:01 AM, Ed Wagner wrote:
I tried Wireshark on my home Apple Intel IMAC using Leopard 10.5.7 and found that I could not capture anything as an administrator. The interfaces did not show up, and I saw an error stating that permission on /dev/bpf0 was denied. Apparently this program must be run as root because the permissions on thios file are crw------- root wheel. However, MAC OS X does not have a RunAs command like Windows does
No; instead, it has an "sudo" command like many other UN*Xes do. :-) One thing you can do with "sudo" is sudo chgrp admin /dev/bpf* sudo chmod g+w /dev/bpf*which gives everybody in the group "admin" - i.e., all administrative users - read and write permission on the BPF devices.
That won't persist across a reboot, so you'd have to install a startup item or a launchd daemon to do that at boot time; the Wireshark .dmg has a startup item you can install to do that.
- References:
- [Wireshark-dev] WireShark on MAC OS X Leopard 10.5.7
- From: Ed Wagner
- [Wireshark-dev] WireShark on MAC OS X Leopard 10.5.7
- Prev by Date: Re: [Wireshark-dev] New experimental feature: GTK2 basedpacket list(svn rev 28892)
- Next by Date: [Wireshark-dev] question regarding my wireshark dissector code.
- Previous by thread: [Wireshark-dev] WireShark on MAC OS X Leopard 10.5.7
- Next by thread: [Wireshark-dev] assosiate a link type to a protocol
- Index(es):