View Full Version : wireshark not part of knoppix anymore?
Albretch
12-15-2016, 12:01 PM
$ sudo wireshark &
[1] 28262
$ sudo: wireshark: command not found
[1]+ Exit 1 sudo wireshark
$ which wireshark
$ uname -a
Linux Microknoppix 4.7.9-64 #19 SMP PREEMPT Sat Oct 22 02:39:01 CEST 2016 x86_64 GNU/Linux
Albretch
12-15-2016, 12:04 PM
What is confusing to me is that I also get:
$ dpkg -l | grep wireshark
ii libwireshark-data 2.2.0+g5368c50-1 all network packet dissection library -- data files
ii libwireshark8:i386 2.2.0+g5368c50-1 i386 network packet dissection library -- shared library
ii wireshark 2.2.0+g5368c50-1 i386 network traffic analyzer - meta-package
ii wireshark-common 2.2.0+g5368c50-1 i386 network traffic analyzer - common files
ii wireshark-gtk 2.2.0+g5368c50-1 i386 network traffic analyzer - GTK+ version
philo
12-15-2016, 01:56 PM
Run:
wireshark-gtk -h
philo
12-15-2016, 05:03 PM
Useful information here:
https://wiki.wireshark.org/CaptureSetup/CapturePrivileges#Other_Linux_based_systems_or_oth er_installation_methods
and here:
http://anonscm.debian.org/viewvc/collab-maint/ext-maint/wireshark/trunk/debian/README.Debian?view=markup
Running:
sudo wireshark-gtk
may work but with warnings that it is dangerous.
Harry Kuhman
12-15-2016, 05:22 PM
Recomendations:
Live DVD with Wireshark: Kali Linux
Installed Linux with Wireshartk available: Debian
philo
12-16-2016, 11:27 AM
Recomendations:
Live DVD with Wireshark: Kali Linux
Installed Linux with Wireshartk available: Debian
What's wrong with Knoppix?
Harry Kuhman
12-17-2016, 08:01 AM
What's wrong with Knoppix?
Well, to quote philo: " may work but with warnings that it is dangerous. "
I thought that the OP was simply looking for a live DVD with Wireshark and made a suggestion. Wireshark is there and given the nature of Kali Linux, Wireshark is unlikely to vanish from it any time soon. When I'm working with a Live DVD I generally am looking to get something done as simply as I can and don't like to have to remember magic prayers to the Linux gods to get things started. I also don't like warnings, at least one reason for that is that I don't think that I know Linux well enough to determine if I can safely ignore the warnings.
Alternately, if the OP is trying to work with an installed system, then I recommend a pure system built from one distro, not the Knoppix approach of hacking different systems together.
Albretch
12-19-2016, 07:56 PM
running wireshark . . .
_USR=$(whoami)
echo "// __ \$_USR: ${_USR}"
sudo chgrp "${_USR}" /usr/bin/dumpcap
sudo setcap cap_net_raw,cap_net_admin+eip /usr/bin/dumpcap
_LOG=$(date +%Y%m%d%H%M%S)"_wireshark-gtk.log"
wireshark-gtk -i eth0 -w "${_LOG}" 2>&1
Powered by vBulletin® Version 4.2.2 Copyright © 2024 vBulletin Solutions, Inc. All rights reserved.