On Tuesday, 8 January 2019 23:03:46 ACDT Andreas Stieger wrote:
Hello,
On 1/8/19 1:24 PM, Rodney Baker wrote:
This came out of a discussion a few weeks ago on the regular opensuse mailing list. Someone mentioned that Wireshark still needs to be run as root on openSuSE, however, for some time now, Wireshark has had privilege separation to allow the UI to be run as the logged-in user will still allowing libpcap privileged access to be able to perform packet capture.
This is already implemented. From package changelog:
- Use capabilities to be able to run capture as a non-root user. In easy system permissions mode all users can capture traffic. In secure system permissions mode, must be added to the wireshark group to capture.
See https://bugzilla.opensuse.org/show_bug.cgi?id=957624
If it is not already, this should be made the default in openSuSE. Does this need a bugzilla?
Actually it should NOT be the default, as general network package capturing should be limited to specific users. In this case those added to the wireshark group.
Andreas
Thanks, Andreas. I had already fixed it locally using setcap back in 2013-14 or somewhere about then, whenever Wireshark implemented it. I was surprised that it seemed to be news to some on the other mailing list, and a bugzilla was suggested then, but I thought I'd ask here first. Glad I did. :) -- ============================================================== Rodney Baker VK5ZTV rodney.baker@iinet.net.au CCNA #CSCO12880208 ==============================================================