Chuck's Blog

I just uploaded my first batch of 68k macintosh software to a site I have set up to be old macintosh friendly.

Some of the software includes:

Ircle 1.51
SIMS (E-mail server)
Virtual Desktop
Disifectant
SoftwareFPU
Basic Black (Screensaver)
VNC 68k

I plan to upload more at a later time, as well as put a few old machines I have to work compiling NetBSD pkgsrc packages for easy installation. Also if anyone notices any software there that has a license that restricts me from uploading it to my archive, please let me know promptly so I can remove it. Authors also feel free to contact me about removing your software if you like as well.

This post is slightly related to my last one, but i figured why not take one of my old Macintosh computers for a spin using A/UX?

For anyone who doesn’t know, A/UX was Apple’s attempt at creating a MacOS and UNIX operating system together as one before OSX. While it’s no longer easy to find the origional disks to install the OS, it is possible to find images of them on the net, however, I do not recommend this due to the fact Apple still has every right to scream at you for doing so!

Lucky for me I have a Mac that came with it installed previously, so I’m all set. I’ll be combining my A/UX adventures with my Macintosh 68k archive in the next few weeks, so yet again stay tuned!

Digging around in my closet today I noticed alot of old 68k mac machines. Then I remembered: I have several gigs of 68k mac software hanging around too that I should upload somewhere indexable!

So for the next few weeks whenever I get the chance I’m going to upload all the 68k mac software I have, providing the software has a license that permits it, to a subdomain of this server for everyone to enjoy.

So 68k Macintosh fans: Stay tuned for lots of goodies

Amavis is known to be a huge memory hog, and those of us leasing sub-30$ VPS servers just can’t afford it. Even as small as 10MB’s of RAM can have a huge impact on performance.

So in order to run with the least impact on memory I decided to drop amavis. The problem with this: I couldn’t find any howto’s that described how to run spamassassin and clamav with postfix WITHOUT amavis. So with a little of trial and error I figured it out on my own.

First you need to make sure spamd and clamd are already running, and that spamc is installed. There are plenty of howto’s on the ‘net to do this, so I won’t go into detail there. So to start off add the following lines to the end of your /etc/postfix/master.cf file

spamassassin unix - n   n   -   -   pipe
    user=vmail argv=/usr/bin/spamc -f -e
    /usr/sbin/sendmail -oi -f ${sender} ${recipient}

# AV scan filter (used by content_filter)
scan      unix  -       -       n       -       16      smtp
        -o smtp_send_xforward_command=yes

# For injecting mail back into postfix from the filter
127.0.0.1:10026 inet  n -       n       -       16      smtpd
        -o content_filter=spamassassin
        -o receive_override_options=no_unknown_recipient_checks,no_header_body_checks
        -o smtpd_helo_restrictions=
        -o smtpd_client_restrictions=
        -o smtpd_sender_restrictions=
        -o smtpd_recipient_restrictions=permit_mynetworks,reject
        -o mynetworks_style=host
        -o smtpd_authorized_xforward_hosts=127.0.0.0/8

(Remove/change user=vmail if you don’t use/use virtual mailboxes)

And in the same file look for the below line (Hint: It’s usually near the top)

smtp      inet  n       -       -       -       -       smtpd

And add the following line underneath it

-o content_filter=scan:127.0.0.1:10025

Now you need to install clamsmtp, a small program that will handle connections to clamd for us

apt-get install clamsmtp

In /etc/clamsmtp.conf change OutAddress and Listen to read

OutAddress: 10026
Listen: 127.0.0.1:10025

While your at it, check all the other parameters to make sure clamsmtp can connect to clamd. You may also be interested in changing the header added to scanned mail so you know which server scanned it.

After all of this is done restart the daemons

/etc/init.d/postfix restart
/etc/init.d/clamsmtp restart

And send yourself test mail. If it fails to work go back and make sure you followed the instructions properly, else congrats! You now have a great spamfiltering setup without amavis! You may now want to look at some basic SMTP-level scanning with RBL’s just to minimise load on your server caused by spamassassin and clamav.

SSH has a nifty feature included with it that allows it to act as a SOCKS server. To use it simply try

ssh -D port account@server

And setup your local configuration files to use the server localhost:port as a SOCKS server. Every connection will then be relayed through server, which allows you to bypass filters the local network. It also encrypts all the data from your local computer to server, which works out great for those of us who quite often want to check our email on insecure networks.

Just remember though: The encryption doesn’t mean your data is safe from sniffing. It’s only safe from data sniffing inside the local network, so you still need to use HTTPS connections and such.