[91236] trunk/dports/net

cal at macports.org cal at macports.org
Mon Mar 26 12:29:53 PDT 2012 

Revision: 91236
          https://trac.macports.org/changeset/91236
Author:   cal at macports.org
Date:     2012-03-26 12:29:53 -0700 (Mon, 26 Mar 2012)
Log Message:
-----------
wireshark(-devel): Add note on how to allow non-root users capturing packages

Modified Paths:
--------------
    trunk/dports/net/wireshark/Portfile
    trunk/dports/net/wireshark-devel/Portfile

Modified: trunk/dports/net/wireshark/Portfile
===================================================================
--- trunk/dports/net/wireshark/Portfile	2012-03-26 19:29:18 UTC (rev 91235)
+++ trunk/dports/net/wireshark/Portfile	2012-03-26 19:29:53 UTC (rev 91236)
@@ -153,5 +153,10 @@
 	configure.args-append	--disable-wireshark
 }
 
+notes "To allow non-root users capturing packages, make sure your $prefix/bin/dumpcap is owned by root\
+    and give it the setuid-mode-bit: chmod +s $prefix/bin/dumpcap. Warning: Every user that is able\
+    to execute this program will be able to capture any traffic into, out of and bypassing your\
+    machine. Consider creating a group and only allowing users in this group to execute this binary."
+
 #
 ##EOF

Modified: trunk/dports/net/wireshark-devel/Portfile
===================================================================
--- trunk/dports/net/wireshark-devel/Portfile	2012-03-26 19:29:18 UTC (rev 91235)
+++ trunk/dports/net/wireshark-devel/Portfile	2012-03-26 19:29:53 UTC (rev 91236)
@@ -164,3 +164,8 @@
         eval xinstall -m 644 [glob ${worksrcpath}/epan/ftypes/*.h] ${destroot}${prefix}/include/wireshark/epan/ftypes/
         eval xinstall -m 644 [glob ${worksrcpath}/wiretap/*.h] ${destroot}${prefix}/include/wireshark/wiretap/
 }
+
+notes "To allow non-root users capturing packages, make sure your $prefix/bin/dumpcap is owned by root\
+    and give it the setuid-mode-bit: chmod +s $prefix/bin/dumpcap. Warning: Every user that is able\
+    to execute this program will be able to capture any traffic into, out of and bypassing your\
+    machine. Consider creating a group and only allowing users in this group to execute this binary."
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.macosforge.org/pipermail/macports-changes/attachments/20120326/9d309516/attachment.html>

More information about the macports-changes mailing list