Honeypots mailing list archives
100% CPU usage with Windows Sebek 3.0.4/2.1.5 inside a virtual machine?
From: Jon Andersen <janderse () umich edu>
Date: Wed, 31 May 2006 22:03:00 -0400
Hi,I have been experimenting with Sebek for the eventual purpose of research on current Internet worm threats. There is a technical problem that I haven't figured out yet. I have tried Sebek 3.0.4 and 2.1.5 under VMware Workstation 5.5.1 (guest OS Windows XP SP2, host OS Fedora Core 4),
Both Sebek 3.0.4 and 2.1.5, after installation, configuration, and first reboot, are causing 100% CPU utilization in both the guest and host OS. Sebek is functioning enough that event packets do eventually show up on the Sebek server; however, the guest and host run so slowly that its not useful. Has anyone seen this pegged-CPU bug before? Any workarounds? If not, any recommendations of other Sebek-like tools that can be installed inside a virtual machine?
Thanks, -Jon Andersen Graduate Student 734-763-4521 (work) 734-763-8428 (home) Computer Science & Engineering - Rm 4917 University of Michigan
Current thread:
- 100% CPU usage with Windows Sebek 3.0.4/2.1.5 inside a virtual machine? Jon Andersen (May 31)
- RE: 100% CPU usage with Windows Sebek 3.0.4/2.1.5 inside a virtual machine? Michael A. Davis (Jun 01)
- Re: 100% CPU usage with Windows Sebek 3.0.4/2.1.5 inside a virtual machine? Jon Andersen (Jun 02)
- Re: 100% CPU usage with Windows Sebek 3.0.4/2.1.5 inside a virtual machine? Frank S Posluszny, III (Jun 01)
- Re: 100% CPU usage with Windows Sebek 3.0.4/2.1.5 inside a virtual machine? Jon Andersen (Jun 02)
- <Possible follow-ups>
- Re: 100% CPU usage with Windows Sebek 3.0.4/2.1.5 inside a virtual machine? msquire (Jun 02)
- Re: 100% CPU usage with Windows Sebek 3.0.4/2.1.5 inside a virtual machine? omarmdx (Jun 02)
- RE: 100% CPU usage with Windows Sebek 3.0.4/2.1.5 inside a virtual machine? Michael A. Davis (Jun 01)