Hi, Attached is my current port for wireshark 1.6.0, as some have requested this. This is a WIP, not posted for addition to the ports, limited testing has been done on amd64 with this version. This builds on i386. I have been updating the port since wireshark version 1.0.x, and using myself.
The privilege separation within wireshark only applies to the linux version, it replies on linux capabilities (CAP_NET_ADMIN, CAP_NET_RAW). Use from a low-privilege account by using sudo tcpdump -i bge1 -w - -n -s1500 ...... | wireshark -i - -k Regards Nigel Taylor
wireshark-1.6.0.tgz
Description: Binary data
