Wireshark on Debian – How to Capture without root or sudo

By | 2013/04/17

To capture packets with wireshark on Debian without root, one must complete a couple of steps. I’ll show you how it works!

1. First install wireshark if you have not already:

$ sudo apt-get install wireshark

2. Next, run the following command and choose yes:

$ sudo dpkg-reconfigure wireshark-common


3. Next add your username to the group wireshark:

$ sudo gpasswd -a username wireshark


$ sudo gpasswd -a stmiller wireshark
[sudo] password for stmiller: 
Adding user stmiller to group wireshark

4. Finally, log out and back in for changes to go into effect. Now running wireshark as your regular user allows the ability to capture packets.


One thought on “Wireshark on Debian – How to Capture without root or sudo

  1. Cornel

    Wow, that was really simple but thanks for sharing! I didn’t think it would be possible to get promiscuous mode to work without root, thanks!


Leave a Reply

Your email address will not be published. Required fields are marked *

Notify me of followup comments via e-mail. You can also subscribe without commenting.