1

wireshark: Couldn't run /usr/sbin/dumpcap in child process

view story
linux-howto

http://unix.stackexchange.com – When I run Wireshark, It shows the following message: Couldn't run /usr/sbin/dumpcap in child process: Permission denied Are you a member of the 'wireshark' group? Try running 'usermod -a -G wireshark _your_username_' as root. I ran this command: usermod -a -G wireshark myusername and checked my groups using groups myusername and I was added to the wireshark group. But I still get that error message. [nima@nma ~]$ groups nima nima : nima wheel dialout wireshark [nima@nma ~]$ ls -l /usr/sbin/dumpcap -rwxr-x--- 1 root wireshark 67884 Aug 16 12:04 /usr/sbin/dumpcap [nima@nma ~]$ /usr/sbin/du (HowTos)

Danial's picture
Submitted by Danial on 11/15/2012

Stories similar to wireshark: Couldn't run /usr/sbin/dumpcap in child process

Greetings-

Trying to set up wireshark to capture traffic in my home network, but I'm getting an error message.

Wireshark from a non root user 40 weeks 4 days ago

Hi,Recently I've tried to install wireshark. I wanted to use it from my everyday user. However I encountered a problem during the installation Failed to set capabilities on file `/usr/bin/dumpcap' (Operation not supported) usage: setcap [-q] [-v] (-r|-|<caps>) <filename> [ ...

Hi Everyone,I am running Wireshark 1.8.1 (compiled from source) under CentOS 6.3.I am running Dumpcap as a service.Dumpcap command command line is:/u... [by xq1xq1]

I've installed Wireshark and configured it to let my user run it with all needed privileges (I enabled dumpcap and added my user to wireshark group, then restarted).

Devices are shown and capture starts well. The problem is that only packets sent to and directed to the PC where Wireshark is running are captured.

Install wireshark and added it to visudo.

But wireshark refused to start in konsole

Code: # sudo wireshark

(wireshark:7493): Gtk-WARNING **: cannot open display: However, wireshark will start without problem when in root.

wireshark installing 33 weeks 6 days ago

I m going to install wireshark from the following youtube video

http://www.youtube.com/watch?v=_YYEIV35IlE

sudo apt-get install wireshark libcap2-bin sudo groupadd wirshark sudo usermod -a -G wireshark debbase

But I faced problem while I ran the command sudo usermod -a -G wireshark debbase. It gives the error:

user 'debbase' does not exist

What should I do?

Top 10 Wireshark Filters 1 year 27 weeks ago

The filtering capabilities of Wireshark are very comprehensive. You can filter on just about any field of any protocol, even down to the HEX values in a data stream. Sometimes though, the hardest part about setting a filter in Wireshark is remembering the syntax! So below are the top 10 display filters that I use in Wireshark. Please comment below and add any common ones that you use as well.

Wireshark and iptables 42 weeks 2 days ago

thatguy wrote:Does wireshark read packets before they reach the kernel/iptables?Yes.thatguy wrote:I had iptables set up to block everything, yet wireshark continued to get up to several hundred packets per second, mostly ARP broadcast from the lan.Expected behaviour.

Wireshark, one of the foremost network protocol analyzers offering users the means to capture and interactively browse the traffic running on a computer network, is now at version 1.8.4.

The current version of Wireshark, 1.8.4, supersedes all previous releases, including all releases of Ethereal.

Wireshark does co... (read more)