Ethereal-dev: Re: [Ethereal-dev] run ethereal capturing *only* HTTP???

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Gilbert Ramirez <gram@xxxxxxxxxxxxxxx>
Date: Fri, 09 Jan 2004 15:41:36 -0000
On Thu, 2004-01-08 at 19:44, Pete Lucuk wrote:
> Hello,
> 
>  
> 
> I am not subscribed on the mailing list so please email me back, thank you.
> petel@xxxxxxxxxx
> 
>  
> 
> Can I and how do I run ethereal capturing *only* HTTP packets?
> 
>  
> 
> I am a doing some HTTP/SOAP/XML development and would KILL to be able to see
> the HTTP stream going back and forth between my Java servlet and web
> browser/toolbar at work, doing some heavy duty stuff.
> 
>  
> 
> But, the Solaris admin on the box will not let me run ethereal cuase I can
> sniff all the traffic going in and out of the box.  We still use telnet,
> rlogin, etc. instead of ssh. :-(
> 
>  
> 
> Bottom line, is there any way to setup ethereal or tethereal so that non
> root users only capture HTTP traffic?

I'm not on ethereal-users, so I don't know if there was a discussion
there. What we need is an HTTP proxy that a user could run, and the
proxy could save the HTTP traffic to a file. Wiretap would need to
support this, and have a new WTAP_ENCAP type.

Thoughts?

--gilbert