Wireshark Not Responding
When I start Wireshark, it loads and tries to find the interfaces. It doesn't find the network interface and then stops responding
1 Answer
- Sort by
oldest newest most voted
0
I have it working now. I uninstalled Wireshark and WinPCAP and reran the installation as the administrator and then started Wireshark as the administrator and hay presto. Thanks
Comments
Note that you really, really, really shouldn't run Wireshark with elevated privileges. Doing so allows full access to your machine from the hundreds of thousands of lines of code in Wireshark, driven by whatever packets are captured or read from possibly unsafe files.
Having to run Wireshark as Administrator is an indicator that something is broken in your installation.
Not enough "really"s here: really really really!
If you are not scared enough, read this waking up presentation. The essence is that dissectors are rarely written with security in mind, so they do not check packet data validity thoroughly enough. So if you feed one with some data it is not prepared to handle, you can trick it into executing a code inside these data, or merely dissect the contents of some packets differently from what they really contain. While you cannot prevent the attacker from hiding some packet contents from you by not running Wireshark as administrator, you can prevent him from installing malware on your system.
Got it. Dropped back to normal user mode when I got the firts warning, and I'm monitoring a local network, but thanks for you feedback.
Your Answer
Please start posting anonymously - your entry will be published after you log in or create a new account.
This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss.
Comments
Wireshark version, and OS you're running on?
OS is Windows 10 and the Wireshark version is 2.4.4