FS#44465 - [wireshark-cli] Permissions not set to allow non-root users to use usbmon
Attached to Project:
Community Packages
Opened by Steven Honeyman (stevenhoneyman) - Saturday, 04 April 2015, 17:59 GMT
Last edited by Timothy Redaelli (tredaelli) - Tuesday, 12 January 2016, 13:44 GMT
Opened by Steven Honeyman (stevenhoneyman) - Saturday, 04 April 2015, 17:59 GMT
Last edited by Timothy Redaelli (tredaelli) - Tuesday, 12 January 2016, 13:44 GMT
|
Details
Description:
usbmon doesn't capture any traffic when run as a user in the wireshark group Additional info: * package version(s) 1.12.4-2 Steps to reproduce: $ sudo mount -t debugfs debugfs /sys/kernel/debug $ sudo modprobe usbmon $ wireshark (try and capture usb) Solution: (stolen from elsewhere online) # setcap CAP_NET_RAW,CAP_NET_ADMIN,CAP_DAC_OVERRIDE+eip /usr/bin/dumpcap |
This task depends upon
Closed by Timothy Redaelli (tredaelli)
Tuesday, 12 January 2016, 13:44 GMT
Reason for closing: Fixed
Additional comments about closing: In 2.0.1-2
Tuesday, 12 January 2016, 13:44 GMT
Reason for closing: Fixed
Additional comments about closing: In 2.0.1-2
$ setcap -v CAP_NET_RAW,CAP_NET_ADMIN+pie /usr/bin/dumpcap
/usr/bin/dumpcap: OK
$ wireshark
("None" where the counter should be for traffic next to usbmon1)
$ sudo setcap CAP_NET_RAW,CAP_NET_ADMIN,CAP_DAC_OVERRIDE+pie /usr/bin/dumpcap
$ wireshark
(usbmon1 increasing packet count)
Without cap_dac_override the usbmon entries are shown (e.g. dumpcap -D), but are not accessible