Search This Blog

Thursday, August 31, 2017

Install a more recent wireshark version on ubuntu 16.04

The wireshark that comes with ubuntu's repositories is a little old. If you wish to get a stable version you can do the following, using wireshark's stable ppa:


  1. sudo add-apt-repository ppa:wireshark-dev/stable
  2. sudo apt-get update
  3. sudo apt-get install wireshark
    (if you wanna make sure which version will be installed, you can check using:
    sudo apt-cache policy wireshark;
    during installation, you will be asked if to enable non-root users, make the decision according to accepted practices in your organization; I prefer to enable non-root users to use wireshark for capturing network traffic and not just for analysis (when dumpcap is used for capturing ))
  4. now edit /etc/group and add your desired non-root users to the wireshark group.
    (pay attention: if you added a logged in user, he should logout and login again for this addition to take effect).