• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: What are the issues with X11 in OS X Mavericks?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: What are the issues with X11 in OS X Mavericks?

  • Subject: Re: What are the issues with X11 in OS X Mavericks?
  • From: Merton Campbell Crockett <email@hidden>
  • Date: Fri, 25 Oct 2013 03:12:09 -0700
On Oct 24, 2013, at 21:37 , Jeremy Huddleston Sequoia <email@hidden> wrote:

>
> On Oct 24, 2013, at 20:14, Marco S Hyman <email@hidden> wrote:
>
>> This is drifting off topic...
>>
>>> a) You should not be running it under sudo.  There's no need for such privilege escalation.
>>
>>
>> I have not run wireshark in quite a while so my knowledge may be out of date.... however, the /dev/bpf? devices are all mode 600 owned by root.  Without running wireshark as superuser you can't capture anything.
>>
>> Has that changed?

No, it hasn’t.

> Wireshark provides a ChmodBPF startup item which chowns them to root:access_bpf and chmods them 660.  Just add your user to the access_bpf group, and you should be good to go.  I believe the standard wireshark package adds the user that installs it to the the access_bpf group.
>
> In particular, look at doc/README.packaging in wireshark's tarball.  It says quite clearly, "WIRESHARK CONTAINS OVER TWO MILLION LINES OF SOURCE CODE. DO NOT RUN THEM AS ROOT."
>
> I suggest you do a google search for "ChmodBPF access_bpf wireshark" to get more data and followup on wireshark mailing lists if you need further help.

I’ve tried both the Wireshark.org and the MacPorts versions of Wireshark.  The MacPorts version has, for some reason, seemed to work better.  I did locate a reference to ChmodBPF in the pcap source.  On initial reading it appeared to be an OS X version specific comment.  I will need to re-read it and discuss it with the MacPorts maintainer.

I’ve tended to run tcpdump and Wireshark as root primarily because I normally monitor network trunks and you will drop traffic if you aren’t running as root.  When I need to capture an enormous amount of traffic I use tcpdump and capture the data to a file that I later analyze with Wireshark in user mode.  Besides, I haven’t used a computer with fewer than 4 CPUs or cores in the last 20 years.  The last time anyone complained about me consuming all system resources was when I was running battlefield simulations on a DECsystem 10 in the Seventies.  :-)

Now that Wireshark has been run once, the initial latency problem has disappeared but I will look into the ChmodBPF issue.

--
Merton Campbell Crockett
e-mail:   email@hidden
mobile:  1(805)377-6762






 _______________________________________________
Do not post admin requests to the list. They will be ignored.
X11-users mailing list      (email@hidden)

This email sent to email@hidden
References: 
 >What are the issues with X11 in OS X Mavericks? (From: Merton Campbell Crockett <email@hidden>)
 >Re: What are the issues with X11 in OS X Mavericks? (From: Jonas Maebe <email@hidden>)
 >Re: What are the issues with X11 in OS X Mavericks? (From: Merton Campbell Crockett <email@hidden>)
 >Re: What are the issues with X11 in OS X Mavericks? (From: Marco S Hyman <email@hidden>)

  • Prev by Date: Re: What are the issues with X11 in OS X Mavericks?
  • Next by Date: Re: What are the issues with X11 in OS X Mavericks?
  • Previous by thread: Re: What are the issues with X11 in OS X Mavericks?
  • Next by thread: Re: What are the issues with X11 in OS X Mavericks?
  • Index(es):
    • Date
    • Thread