This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

How can a business use Wireshark and disable Live Packet Sniffing?

0

Our business may need to use Wire Shark for looking at packet data for a client, However, with this program being shared with all employees in the company. We don't want anyone to actually look at our internal data.

Is there a way that we can disable the Live Packet Sniff part of the program?

asked 05 Feb '14, 05:07

countryboy456's gravatar image

countryboy456
1111
accept rate: 0%

One Answer:

1

Is there a way that we can disable the Live Packet Sniff part of the program?

Yes, you can do one of the following

  • 'distribute' the portable version of Wireshark and don't install WinPcap on the company systems.
  • build your own installation package that does not include WinPcap, by using your preferred software distribution tool to create a 'snapshot' of a system with Wireshark (but without WinPcap).
  • use the silent installation of the default package. Run the installation package with option /S on Windows, as that does not install WinPcap. See also here: http://ask.wireshark.org/questions/27392/silent-installuninstal

Regards
Kurt

answered 05 Feb '14, 05:23

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%

edited 05 Feb '14, 06:34