Sniff usb with non-root user under Ubuntu 18.04

asked 2020-04-28 16:40:34 +0000

4xy
1 ●1

I followed this guide in Linux to make wireshark work with usual user rights, but unfortunately it still requires to run as root to be possible to sniff USB traffic. The user is in wireshark group.

q@4xybook:~$ groups q
q : q adm tty disk lp uucp dialout cdrom sudo audio dip video plugdev users lpadmin pulse pulse-access sambashare vboxusers input wireshark docker libvirt

Also ACL read permission is also set.

q@4xybook:~$ sudo setfacl -m u:$USER:r /dev/usbmon*
q@4xybook:~/work/scripts$ getfacl /dev/usbmon0
getfacl: Removing leading '/' from absolute path names
# file: dev/usbmon0
# owner: root
# group: root
user::rw-
user:q:r--
group::---
mask::r--
other::---

How to make it possible?

edit retag flag offensive close merge delete

Comments

What does /sbin/getcap /usr/bin/dumpcap say?

Jaap ( 2020-04-29 12:13:06 +0000 )edit

/usr/bin/dumpcap = cap_net_admin,cap_net_raw+eip

4xy ( 2020-05-02 14:24:56 +0000 )edit

add a comment

Comments

I performed chmod u+s /usb/bin/dumpcap, but still see no usbmon* entries in wireshark under usual rights

4xy ( 2020-05-02 14:26:37 +0000 )edit

add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Sniff usb with non-root user under Ubuntu 18.04

Comments

1 Answer

Comments

Your Answer

Question Tools

Stats

Related questions

Sniff usb with non-root user under Ubuntu 18.04 edit

Comments

1 Answer

Comments

Your Answer

Question Tools

Stats

Related questions

Sniff usb with non-root user under Ubuntu 18.04