ubuntuにWiresharkをインストール
をテンプレートにして作成
[
トップ
] [
新規
|
一覧
|
検索
|
最終更新
|
ヘルプ
|
ログイン
]
開始行:
* ubuntuにWiresharkをインストール [#h024ad50]
自宅のWindows10マシンが昇天したので、Ubuntuマシンとして人...
仕事柄Wiresharkを入れていないと不便だよねぇ。ということで...
[[WiFiパケットの取得]]でも触れていたが、正しくはこちら。
$ sudo apt install wireshark
だけ
Dumpcap can be installed in a way that allows members of...
system group to capture packets. This is recommended ove...
alternative of running Wireshark/Tshark directly as root...
of the code will run with elevated privileges.
For more detailed information please see
/usr/share/doc/wireshark-common/README.Debian.gz once th...
installed.
Enabling this feature may be a security risk, so it is d...
default. If in doubt, it is suggested to leave it disabl...
Should non-superusers be able to capture packets?
という質問があるので、「非スーパーユーザーがパケットをキ...
/usr/share/doc/wireshark-common/README.Debian.gz に詳細な...
$ zcat /usr/share/doc/wireshark-common/README.Debian.gz
I. Capturing packets with Wireshark/Tshark
There are two ways of installing Wireshark/Tshark on ...
installation process may offer a choice between these...
asking "Should non-superuser be able to capture packe...
I./a. Installing dumpcap without allowing non-root us...
Only root user will be able to capture packets. It...
packets with the bundled dumpcap program as root a...
Wireshark/Tshark as an ordinary user to analyze th...
This is the default on Debian systems; it is selec...
"<No>" to the question mentioned above.
I./b. Installing dumpcap and allowing non-root users ...
Members of the wireshark group will be able to cap...
interfaces. This is the preferred way of installat...
will be used for capturing and displaying packets ...
that way only the dumpcap process has to be run wi...
thanks to the privilege separation[1].
This is selected by answering "<Yes>" to the quest...
above.
Note that no user will be added to group wireshark...
a system administrator has to add them manually, u...
command:
sudo usermod -a -G wireshark {username}
or, if you're using a desktop environment that inc...
managing users, such as the "Users and Groups" too...
in the gnome-system-tools package), using that too...
is added to the wireshark group, she/he may need t...
make her/his new group membership take effect and ...
packets.
The additional privileges are provided using the L...
system where it is available and resorting to sett...
bit of the dumpcap binary as a fall-back, where th...
system is not present (Debian GNU/kFreeBSD, Debian...
Linux kernels provided by Debian support Linux Cap...
built kernels may lack this support. If the suppor...
Capabilities is not present at the time of install...
package, the installer will fall back to set the s...
allow non-root users to capture packets.
If installation succeeds with using Linux Capabili...
will not be able to capture packets while running ...
Linux Capabilities.
Note that capturing USB packets is not enabled for...
Linux Capabilities. You have to capture the packet...
described in I./a., setting the set-user-id perman...
dpkg-statoverride or running dumpcap as root.
The installation method can be changed any time by...
sudo dpkg-reconfigure wireshark-common
The question mentioned above will be asked; answer...
II. Installing SNMP MIBs
SNMP [4] OIDs can be decoded using MIBs provided by ...
wireshark-common suggests snmp-mibs-downloader which...
download a set of common MIBs Wireshark/Tshark tries...
At the time of writing, MIBs are distributed under D...
[5] thus snmp-mibs-downloader has to be in the non-f...
To keep wireshark in the main area [7], wireshark-co...
or recommend snmp-mibs-downloader and as a result sn...
not installed automatically with wireshark.
To make Wireshark/Tshark able to decode OIDs, please...
snmp-mibs-downloader manually.
To help Wireshark/Tshark to decode OIDs without havi...
manually, please support the initiative of requestin...
from RFC authors [5].
[1] https://gitlab.com/wireshark/wireshark/-/wikis/De...
[2] https://gitlab.com/wireshark/wireshark/-/wikis/Ca...
[3] https://blog.wireshark.org/2010/02/running-wiresh...
[4] https://gitlab.com/wireshark/wireshark/-/wikis/SNMP
[5] https://wiki.debian.org/NonFreeIETFDocuments
[6] https://www.debian.org/doc/debian-policy/ch-archi...
[7] https://www.debian.org/doc/debian-policy/ch-archi...
で確認。
今回は、下記のようにアクセス権を付与。
$ sudo usermod -a -G wireshark {username}
ちなみに、下記のようにすれば再設定が可能。
$ sudo dpkg-reconfigure wireshark-common
#htmlinsert(amazon_pc.html);
終了行:
* ubuntuにWiresharkをインストール [#h024ad50]
自宅のWindows10マシンが昇天したので、Ubuntuマシンとして人...
仕事柄Wiresharkを入れていないと不便だよねぇ。ということで...
[[WiFiパケットの取得]]でも触れていたが、正しくはこちら。
$ sudo apt install wireshark
だけ
Dumpcap can be installed in a way that allows members of...
system group to capture packets. This is recommended ove...
alternative of running Wireshark/Tshark directly as root...
of the code will run with elevated privileges.
For more detailed information please see
/usr/share/doc/wireshark-common/README.Debian.gz once th...
installed.
Enabling this feature may be a security risk, so it is d...
default. If in doubt, it is suggested to leave it disabl...
Should non-superusers be able to capture packets?
という質問があるので、「非スーパーユーザーがパケットをキ...
/usr/share/doc/wireshark-common/README.Debian.gz に詳細な...
$ zcat /usr/share/doc/wireshark-common/README.Debian.gz
I. Capturing packets with Wireshark/Tshark
There are two ways of installing Wireshark/Tshark on ...
installation process may offer a choice between these...
asking "Should non-superuser be able to capture packe...
I./a. Installing dumpcap without allowing non-root us...
Only root user will be able to capture packets. It...
packets with the bundled dumpcap program as root a...
Wireshark/Tshark as an ordinary user to analyze th...
This is the default on Debian systems; it is selec...
"<No>" to the question mentioned above.
I./b. Installing dumpcap and allowing non-root users ...
Members of the wireshark group will be able to cap...
interfaces. This is the preferred way of installat...
will be used for capturing and displaying packets ...
that way only the dumpcap process has to be run wi...
thanks to the privilege separation[1].
This is selected by answering "<Yes>" to the quest...
above.
Note that no user will be added to group wireshark...
a system administrator has to add them manually, u...
command:
sudo usermod -a -G wireshark {username}
or, if you're using a desktop environment that inc...
managing users, such as the "Users and Groups" too...
in the gnome-system-tools package), using that too...
is added to the wireshark group, she/he may need t...
make her/his new group membership take effect and ...
packets.
The additional privileges are provided using the L...
system where it is available and resorting to sett...
bit of the dumpcap binary as a fall-back, where th...
system is not present (Debian GNU/kFreeBSD, Debian...
Linux kernels provided by Debian support Linux Cap...
built kernels may lack this support. If the suppor...
Capabilities is not present at the time of install...
package, the installer will fall back to set the s...
allow non-root users to capture packets.
If installation succeeds with using Linux Capabili...
will not be able to capture packets while running ...
Linux Capabilities.
Note that capturing USB packets is not enabled for...
Linux Capabilities. You have to capture the packet...
described in I./a., setting the set-user-id perman...
dpkg-statoverride or running dumpcap as root.
The installation method can be changed any time by...
sudo dpkg-reconfigure wireshark-common
The question mentioned above will be asked; answer...
II. Installing SNMP MIBs
SNMP [4] OIDs can be decoded using MIBs provided by ...
wireshark-common suggests snmp-mibs-downloader which...
download a set of common MIBs Wireshark/Tshark tries...
At the time of writing, MIBs are distributed under D...
[5] thus snmp-mibs-downloader has to be in the non-f...
To keep wireshark in the main area [7], wireshark-co...
or recommend snmp-mibs-downloader and as a result sn...
not installed automatically with wireshark.
To make Wireshark/Tshark able to decode OIDs, please...
snmp-mibs-downloader manually.
To help Wireshark/Tshark to decode OIDs without havi...
manually, please support the initiative of requestin...
from RFC authors [5].
[1] https://gitlab.com/wireshark/wireshark/-/wikis/De...
[2] https://gitlab.com/wireshark/wireshark/-/wikis/Ca...
[3] https://blog.wireshark.org/2010/02/running-wiresh...
[4] https://gitlab.com/wireshark/wireshark/-/wikis/SNMP
[5] https://wiki.debian.org/NonFreeIETFDocuments
[6] https://www.debian.org/doc/debian-policy/ch-archi...
[7] https://www.debian.org/doc/debian-policy/ch-archi...
で確認。
今回は、下記のようにアクセス権を付与。
$ sudo usermod -a -G wireshark {username}
ちなみに、下記のようにすれば再設定が可能。
$ sudo dpkg-reconfigure wireshark-common
#htmlinsert(amazon_pc.html);
ページ名:
![[PukiWiki]](image/gbook_orange_80x80.png "[PukiWiki]")
