'Re: [Wireshark-dev] Wireshark on Kali linux'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       wireshark-dev
Subject:    Re: [Wireshark-dev] Wireshark on Kali linux
From:       Jeff Morriss <jeff.morriss.ws () gmail ! com>
Date:       2019-02-12 21:25:14
Message-ID: CAKkq+FY0Ym_TfityebNSDbMqvbz5rjdFKO0DuhrVh3=gG05mNg () mail ! gmail ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


On Thu, Feb 7, 2019 at 7:51 AM Graham Bloice <graham.bloice@trihedral.com>
wrote:

> On Thu, 7 Feb 2019 at 10:34, Dario Lombardo <lomato@gmail.com> wrote:
>
>> +1 from me for this as well. The warning should be there for anyone not
>>> realizing that this is dangerous, but having the option to mute that
>>> warning for people who know (or think they do) what they're doing makes
>>> sense.
>>>
>>> My only concern is that if we expect the distribution people to
>> deactivate it, and they don't care, we're are not moving. I'd like to have
>> something that
>> 1) doesn't rely on env variables, cmd line switches, preferences, any
>> other stuff related to the way the software is launched, but works
>> out-of-the-box. It's ok to rely on the package we distribute (Balint's
>> package is not official, but he's a core-, so we're controlling it). If
>> other distributions run "as root" and are based on rpm, we should cover
>> that as well.
>> 2) doesn't bother the users (basically no dialogs).
>>
>
> Surely it has to bother the user in some way, as otherwise there is no
> point?  I'm not advocating the triple chase-the-dialog really, really
> confirm type of dialog, but I do think it should be front and centre.
>

I hadn't even noticed that the Qt UI *doesn't* provide such a warning.  The
Gtk one did; for example:

https://blog.binarymist.net/2013/04/13/running-wireshark-as-non-root-user/

[Attachment #5 (text/html)]

<div dir="ltr"><div dir="ltr"><div dir="ltr"><br></div><br><div \
class="gmail_quote"><div dir="ltr" class="gmail_attr">On Thu, Feb 7, 2019 at 7:51 AM \
Graham Bloice &lt;<a \
href="mailto:graham.bloice@trihedral.com">graham.bloice@trihedral.com</a>&gt; \
wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px \
0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div \
class="gmail_quote"><div dir="ltr" class="gmail_attr">On Thu, 7 Feb 2019 at 10:34, \
Dario Lombardo &lt;<a href="mailto:lomato@gmail.com" \
target="_blank">lomato@gmail.com</a>&gt; wrote:<br></div><blockquote \
class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid \
rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div \
class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px \
0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div>+1<span \
style="font-family:Tahoma;font-size:9pt;color:rgb(0,0,0)">  from me for this as well. \
The warning should be there for anyone not realizing that this is dangerous, but \
having the option to mute that warning for people who know (or think they do) what \
they&#39;re doing makes sense.</span></div><br></blockquote><div>My only concern is \
that if we expect the distribution people to deactivate it, and they don&#39;t care, \
we&#39;re are not moving. I&#39;d like to have something that</div><div>1) \
doesn&#39;t rely on env variables, cmd line switches, preferences, any other stuff \
related to the way the software is launched, but works out-of-the-box. It&#39;s ok to \
rely on the package we distribute (Balint&#39;s package is not official, but he&#39;s \
a core-, so we&#39;re controlling it). If other distributions run &quot;as root&quot; \
and are based on rpm, we should cover that as well.</div><div>2) doesn&#39;t bother \
the users (basically no dialogs).</div></div></div></blockquote></div><br \
clear="all"><div>Surely it has to bother the user in some way, as otherwise there is \
no point?   I&#39;m not advocating the triple chase-the-dialog really, really confirm \
type of dialog, but I do think it should be front and \
centre.</div></div></blockquote><div><br></div><div>I hadn&#39;t even noticed that \
the Qt UI <i>doesn&#39;t</i> provide such a warning.   The Gtk one did; for \
example:</div><div><br></div><div><a \
href="https://blog.binarymist.net/2013/04/13/running-wireshark-as-non-root-user/">http \
s://blog.binarymist.net/2013/04/13/running-wireshark-as-non-root-user/</a></div><div><br></div></div></div></div>



[Attachment #6 (text/plain)]

___________________________________________________________________________
Sent via:    Wireshark-dev mailing list <wireshark-dev@wireshark.org>
Archives:    https://www.wireshark.org/lists/wireshark-dev
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-dev
             mailto:wireshark-dev-request@wireshark.org?subject=unsubscribe

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic