1. 下載
libpcap: http://www.tcpdump.org/release/libpcap-1.9.0.tar.gz cmake: https://github-production-release-asset-2e65be.s3.amazonaws.com/537699/54722c00-cf07-11e9-8910-8264b6ebd3e4?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A%2F20190930%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20190930T023618Z&X-Amz-Expires=300&X-Amz-Signature=752170aaf9180a2bb389e58db4d1dffeaa1107eb001d0bd4f22c6463b3a4dcca&X-Amz-SignedHeaders=host&actor_id=0&response-content-disposition=attachment%3B%20filename%3Dcmake-3.15.3-Linux-x86_64.sh&response-content-type=application%2Foctet-stream Wireshark:https://2.na.dl.wireshark.org/src/wireshark-3.0.5.tar.xz GLib2.0: 使用yum安裝,glib2, glib2-devel gcc/gcc-c++: 使用yum安裝
2. 安裝
安裝glib2.0 yum install glib2 glib2-devel 安裝gcc, gcc-c++ yum install gcc, gcc-c++ 安裝 bison yum install bison 安裝libpcap tar zxf libpcap-1.9.0.tar.gz cd libpcap-1.9.0/ ./configure --prefix=/home/tim/inst/ make make install 安裝CMake ./cmake-3.15.3-Linux-x86_64.sh --prefix=/home/tim/inst/ cd /home/tim/inst/ cp -rf cmake-3.*/bin/* ./bin/ cp -rf cmake-3.*/share/* ./share/ cp -rf cmake-3.*/* . 安裝wireshark tar xf wireshark-3.0.5.tar.xz cd wireshark-3.0.5/ mkdir build cd build cmake -DBUILD_wireshark=OFF -DCMAKE_INSTALL_PREFIX=/home/tim/inst ../ make make install
3. 設置普通用戶能抓包權限
root用戶環境 安裝 libcap yum install libcap groupadd -g wireshark usermod -a -G wireshark tim chgrp wireshark /home/tim/inst/bin/dumpcap chmod 4750 /home/tim/inst/bin/dumpcap setcap cap_net_raw,cap_net_admin=eip /home/tim/inst/bin/dumpcap getcap /home/tim/inst/bin/dumpcap 輸出 /home/tim/inst/bin/dumpcap = cap_net_admin,cap_net_raw+eip tim普通用戶環境 tshark -i ens33 ... working...