Can’t install ChmodBPF on MacOS

Summary

The web content describes a solution to an installation issue with ChmodBPF on MacOS Ventura, which is required for Wireshark packet capture functionality.

Abstract

The article addresses a common problem encountered by users trying to install ChmodBPF on MacOS Ventura, particularly when using Wireshark. Despite multiple installation attempts without error messages, Wireshark persistently indicated that ChmodBPF was not installed, preventing packet capture due to permission issues. The author, Teri Radichel, provides a fix by running the ChmodBPF installation from the terminal with sudo privileges. This resolved the issue for the author, who expresses concern about potential future disruptions by MacOS updates that could affect security professionals' ability to work effectively on Mac systems. The article also promotes Radichel's work in cybersecurity, including books, presentations, and her company, 2nd Sight Lab, which offers penetration testing, security assessments, and consulting services.

Opinions

The author, Teri Radichel, implies that the issue with ChmodBPF installation might be a bug, either in MacOS or Wireshark.
Radichel expresses a hope that Apple will not introduce changes that could break the sudo workaround in the future, as it would negatively impact security professionals' work on Macs.
The author's use of emojis and the phrase "A lot of security professionals will not be happy or able to do their jobs on a Mac" suggests a strong opinion that the current state of affairs, if altered by Apple, could be detrimental to the cybersecurity community.
Radichel encourages readers to follow her for updates, indicating a commitment to providing ongoing support or information related to this issue or other cybersecurity topics.
The inclusion of Radichel's credentials and her company's services suggests a self-assured opinion of her expertise and the value of her professional offerings in the field of cybersecurity.

Problem with Wireshark installation on Apple Ventura MacOS

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Just ran across this issue and seems like a bug, but not sure if it’s in MacOS or Wireshark land.

When installing Wireshark as administrative user on Apple Mac OS I installed ChmodBPF multiple times and got no error message. Yet, Wireshark continued to report that ChmodBPF was not installed and I didn’t have permission to capture packets.

Turns out, you have to run it from terminal with sudo:

sudo /Library/Application\ Support/Wireshark/ChmodBPF/ChmodBPF

Solved the problem for me and hope Apple does not break the above in the future. A lot of security professionals will not be happy or able to do their jobs on a Mac.

Follow for updates.

About Teri Radichel:
~~~~~~~~~~~~~~~~~~~~
⭐️ Author: Cybersecurity Books
⭐️ Presentations: Presentations by Teri Radichel
⭐️ Recognition: SANS Award, AWS Security Hero, IANS Faculty
⭐️ Certifications: SANS ~ GSE 240
⭐️ Education: BA Business, Master of Software Engineering, Master of Infosec
⭐️ Company: Penetration Tests, Assessments, Phone Consulting ~ 2nd Sight Lab

Need Help With Cybersecurity, Cloud, or Application Security?
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
🔒 Request a penetration test or security assessment
🔒 Schedule a consulting call
🔒 Cybersecurity Speaker for Presentation

Follow for more stories like this:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 
❤️ Sign Up my Medium Email List
❤️ Twitter: @teriradichel
❤️ LinkedIn: https://www.linkedin.com/in/teriradichel
❤️ Mastodon: @teriradichel@infosec.exchange
❤️ Facebook: 2nd Sight Lab
❤️ YouTube: @2ndsightlab