https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4293
Gerald Combs <gerald@xxxxxxxxxxxxx> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |gerald@xxxxxxxxxxxxx
--- Comment #5 from Gerald Combs <gerald@xxxxxxxxxxxxx> 2009-12-04 09:36:07 PST ---
(In reply to comment #4)
> (In reply to comment #3)
> > Eh, no. setuid root takes care of that.
> > See also http://brainstorm.ubuntu.com/idea/14140/
>
> I read the link you had given.
> I tried running dumpcap as root, and then viewing the file which it saves the
> capture in through wireshark. It says 'you do not have permissions to read the
> file'. This is obvious as the file is created by a privileged user, and an
> unprivileged user cannot view it. I tried "sudo chgrp root /usr/bin/dumpcap",
> then ran dumpcap and then wireshark to view the file. But it gives the same
> 'permission denied' message.
It sounds like you're not setting dumpcap's permissions correctly. You should
do something like the following:
# chown root /path/to/dumpcap
# chgrp capture /path/to/dumpcap
# chmod 4750 /path/to/dumpcap
"/path/to/dumpcap" should be replaced with the full filesystem path to dumpcap.
"capture" is a group that you're a member of. It could be "admin", "wheel", or
any other group just as long as you're a member. "ls -l dumpcap" should look
something like this:
rwsr-x--- 1 root capture 145228 Dec 3 17:15 dumpcap
--
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
