Alternative to tcpdump that can be run as non-root user?

Moderators: kirk, jamesbond, p310don, JakeSFR, step, Forum moderators

Post Reply
Neo_78
Posts: 378
Joined: Wed Dec 29, 2021 10:45 pm
Has thanked: 206 times
Been thanked: 9 times

Alternative to tcpdump that can be run as non-root user?

Post by Neo_78 »

tcpdump filtering requires root privileges to be executed.

Do you know any network tools that can be run as a normal non-root user with the objective to monitor incoming traffic by IP source?

bmon, for instance, can be run in this way and will graphically display traffic spikes, but won't show the type of data that is received nor the IP location.

Thanks for sharing your ideas! :thumbup:

Top
User avatar
JakeSFR
Posts: 260
Joined: Wed Jul 15, 2020 2:23 pm
Been thanked: 135 times

Re: Alternative to tcpdump that can be run as non-root user?

Post by JakeSFR »

According to https://wiki.wireshark.org/CaptureSetup ... Privileges this might work:

Code: Select all

sudo setcap cap_net_raw,cap_net_admin+eip /usr/sbin/tcpdump

Greetings!

[O]bdurate [R]ules [D]estroy [E]nthusiastic [R]ebels => [C]reative [H]umans [A]lways [O]pen [S]ource
Omnia mea mecum porto.
Top
Post Reply

Return to “Software”