本文轉自:http://blog.csdn.net/digimon/article/details/7220290
默認情況下,訪問網絡端口需要root權限,而wireshark的只是/usr/share/dumpcap的一個UI,/usr/share/dumpcap需要root權限,所以沒法non-root用戶無法讀取網卡列表。
解決辦法很簡單,sudo wireshark
但是wireshark官方不推薦這麼做:
Running as user "root" and group "root".
This could be dangerous.
If you're running Wireshark this way in order to perform live capture, you may want to be aware that there is a better way documented at
所以用另一種方法,改變/usr/share/dumpcap的group,添加一個group:wireshark,chgrp到wireshark組,再改成750權限,這樣方便權限控制。
- sudo -s
- groupadd wireshark
- usermod -a -G wireshark <You own username>
- chgrp wireshark /usr/bin/dumpcap
- chmod 4750 /usr/bin/dumpcap
又參考網上的解決方案,執行下面命令
- setcap cap_net_raw,cap_net_admin=eip /usr/bin/dumpcap
用getcap /usr/bin/dumpcap,輸出應當是/usr/bin/dumpcap = cap_net_admin,cap_net_raw+eip,說明生效
注意得註銷一下才能生效
官方解決方案http://packetlife.net/blog/2010/mar/19/sniffing-wireshark-non-root-user/
相關的文字還有:
http://blog.chinaunix.net/uid-26527046-id-3561312.html