wireshark must be run as root unless wireshark-common is reconfigured
Binary package hint: wireshark
If I run wireshark as a normal user, I can't select a capture interface and it doesn't work. According to bug #287099, wireshark needs to be run as root. If that really is the case it should be installed in the menu with gksu, just like all the other tools in the menu that need root privileges.
However, if you run wireshark as root, it complains: "Running as user "root" and group "root". This could be dangerous". Apparently, you are not meant to run wireshark as root. This message is confusing and inconsistent. Apparently Ubuntu currently provides no way to run wireshark correctly out of the box. It either doesn't work, or complains about running as root.
I agree that running a complex tool like wireshark as root is not a good idea. Furthermore, the wireshark documentation says so too, and provides several ways of running wireshark as a non-root user: http://
I've tested the instructions under "limiting capture permissions to only one group", and they work perfectly. I can now capture packets as a normal user, without having to run wireshark as root.
I propose that this mechanism is implemented for the Ubuntu wireshark package, so that normal users (after having been added to the wireshark group) can capture packets out of the box, without warnings about running as root.
Date: Thu Jan 28 18:29:01 2010
DistroRelease: Ubuntu 9.10
InstallationMedia: Ubuntu 9.10 "Karmic Koala" - Release amd64 (20091027)
Package: wireshark 1.2.2-2
Uname: Linux 2.6.31-17-generic x86_64
|visibility:||private → public|
|Changed in wireshark (Ubuntu):|
|status:||New → Confirmed|
|importance:||Undecided → Wishlist|
|Martin Lindhe (martinlindhe) wrote : Re: [Bug 513903] Re: Must be run as root, which is not secure||#6|
- Must be run as root, which is not secure
+ wireshark must be run as root unless wireshark-common is reconfigured