On Fedora I’m a member of 2 groups: wheel and myself. I don’t think there’s anything i need to do other than install packages from the respective repo using the appropriate package manager? I also checked a Debian 11 installation: that has Wireshark installed ( sudo apt install) but I need to run it with sudo there too. (Why fc36 if I’m on F37? Just bits not updated, or a repo mismatch?) The above commands yield: wireshark-cli-3.6.86_64 I logged in again just in case something needed to be reloaded. I just sudo dnf install’ed Wireshark on a new F37 installation. Rpm -q -a wireshark\* getent group wireshark Any pointers to online sources or books detailing the nitty gritty of privilege levels and access control for Linux processes would be very welcome, thanks! (I’ve referenced for some information so far, but there’s a load I’ve yet to read, and I have a copy of Linux Device Drivers, 3rd Edition on my machine, and ditto with the lots-to-read.) I’ve not written the latter for Linux, it’s been decades since I wrote a daemon proper, and I’ve never written a service process for Linux either (I have done all of the above for Windows/NT). What is a good source for understanding how the access control model works on Linux (from a systems programming perspective)? I’m researching a product that I would like to run with root privileges but without having to be root or use sudo: it might be (or include) a daemon, a system process or a kernel object. The absence of the wireshark group raises another question: how do you create groups that have root/sudoer privileges so that you don’t have to use sudo if you’re the member of the group? How does Linux confer elevated privileges to a process such that you don’t have to start it via sudo or while logged in as root? Specifically, how does Wireshark get access to the packet capture/BPF API if I’m not root/running with sudo? If you get this wrong (which I did recently) then you’re prompted by UAC about a hundred times before you get to actually capture anything (maybe I slightly exaggerated the figure, but only slightly). On Windows, the Wireshark installation does ask you if you want to run it without Admin privileges. It may well be that I missed a question or answered wrongly when prompted, I don’t recall. Should this have been created when I installed it via dnf? However, I apparently should be a member of the wireshark group so that I don’t have to start it via sudo? But there is no wireshark group on my system. I start it with sudo wireshark in a terminal in order to actually capture packets off the net. Some time ago I installed Wireshark from the F37 repo and it’s been working fine.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |