Astaro and SpamAssassin

We have an Astaro Security Linux firewall (actually two of them, running in High Availability mode) at work. ASL includes SpamAssassin, which is effective in filtering out some spam email from our corporate network. Unfortunately, there doesn’t seem to be a way to ‘train’ the bayesian filter. Most SpamAssassin implementations that I’ve seen allow you to set up a spam trap email address where you forward all of your spam messages, and SpamAssassin uses these to train the bayesian filter to recognize spam.

Well, I was playing around at the command prompt, and I found where Astaro keeps the bayes database. It can be found at:

/var/lib/nobody/.spamassassin

I also found that the sa-learn command was installed and working. So, I took a couple of mbox-style files, one with my spam, and one with regular emails, and ran the following commands:

sa-learn --dbpath /var/lib/nobody/.spamassassin/ --spam --inbox --showdots spam
sa-learn --dbpath /var/lib/nobody/.spamassassin/ --ham --inbox --showdots inbox

where ‘spam’ was my spam file, and ‘inbox’ was my non-spam file.

The results so far, after training with about 5000 spam messages and 10000 regular messages seems to be working. Looking at the ASL log files, I see more of the spam messages getting a higher bayes score.

HP 4951A Protocol Analyzer

I just recieved a new piece of hardware from one of my many forays into Ebay. It’s a HP4951A protocol analyzer from Hewlett Packard. It appears to be just the piece of hardware I need for all of the serial communications hacking I do with my antique computers.

However, when I plugged it in, it made a few encouraging beeps, followed by nothing. The screen briefly showed a green dot in the lower center of the screen, but then nothing.

My background is digital, but my instinct told me that this was probably a display problem – maybe in the horizontal sweep? I carefully pulled the unit apart. I’m absolutely amazed at how well this thing is put together. The copper traces on the circuit board are gold plated. Almost all the resistors are precision 1% tolerance. Most of the chips, however, are printed with a house part number, so repair of the digital circuitry may be impossible.

I found a company in Canada that appears to rent service manuals for various equipment, so I’ve put an email in to them asking if they are able to rent me the service manual for this piece of equipment.

I did some searching on the net to see what I could find. I didn’t come across very much at all. One gem I did come across was this usenet posting. There were no responses, but it definitely was the description of my problem. I decided to email the gentleman, and to my surprise I received a response within a couple of hours detailing his problem was in the focus circuit, and identified a 750K resistor that was open. I stripped down my unit, and sure enough my unit had the same problem! unfortunately, it’s Saturday afternoon here, and there’s nowhere open to find a replacement, so I’m going to have to wait until Monday. The fact that I’ve found the very same component that failed is very encouraging.

I posted two images in my moblog showing the board and the component. It’s difficult to see with my cell cam, but the faulty component is located just to the left of the focus pot (it’s removed in this picture). I’ll let you know how I got on once I get a replacement part.

Vegas!

My wife surprised me with a long-weekend trip to Vegas. What a wonderful break. Now, I’m not one for all of the glitz and faux-rennaisance crap that they have here (I grew up in Europe – a fake Eiffel Tower just isn’t the same as the real thing), I must admit that I’m having a great time!

It’s great to have a few days away from work, where I’m too far away to deal with anything even if an emergency came up. We’ve been to see The Blue Man Group (my favourite) and Celine Dion (Cheryl’s favourite).

I managed to sneak in damn-near half a suitcase of technology to bring with me. High speed Internet access in the hotel room is becoming more common, but I was downright shocked to find a Wi-Fi acces point hidden underneath the desk in the room! So I’m blogging from the Zaurus wirelessly!

The one piece of technology that doesn’t work is my brand new camera phone! I’ve got voice service, but no net access, and no ability to blog pictures!

Free Samples

I was doing some research on the Texas Instruments website the other day looking up some specifications on some serial interface chips for a project I’m working on. I happened to stumble upon the fact that the have a free sample program! I was a bit skeptical while I entered my order, but yesterday UPS showed up on my doorstep with a package from TI! I didn’t even have to pay any shipping, and it arrived 2 days after my order. Very impressive.

Moblogging

A few days ago, I acquired a new cell phone from my local provider Telus. It’s the LG 5450 camera phone. Along with a camera phone comes moblogging. It took me a few days, but I’ve got the moblog working (note the pictures on the left of the main page). I’m using TextAmerica.com to host the pictures. They’ve been very helpful. I had an issue with the way that Telus formats their email message containing the image – they were very quick to modify their code to accept Telus postings.

Nerf Gun

Today, we rolled out a new insurance sales module for our in-house POS/CRM system. The company decided to hold a little party for the IT department to celebrate the rollout. The coolest part was we got a Nerf gun! Needless to say, productivity in the department plummeted for the remainder of the day.

Toshiba Magnia SG20

Yet another cool piece of hardware has made its way to my test bench. This time, it’s the Toshiba Magnia SG20. I would hazard a guess that Toshiba made way too many of these things, because everyone and his dog is selling them on Ebay.

What’s inside? Within 15 minutes of it arriving, I had it ripped apart to see what made it tick. Very impressive. This box is ideal for a small all-in-one server application. My original intention was to use it as a captive access point for some public-access Wi-Fi hotspots that a few friends and I want to set up (as an aside, check out the software that we’re thinking of using – NoCatNet). After ripping it apart, I’m thinking that it might work better as a mobile server for my truck.

I’ve tried doing some searching on the net for any links to people hacking this unit (there must be people hacking it – it’s just so… hackable!). All I’ve been able to come up with is a Latvian site with some nice pictures. A bit more digging, and I found a Yahoo group.

I found one tidbit of information somewhere (I can’t find the link at the moment) that mentions that ‘telnetuser’ and the admin password is used to telnet in to the box to get a command prompt. I’ll test that theory as soon as I’ve put it back together!

I Have Seen The Future

and it’s incredible! Sitting in bed surfing tge web with my Sharp Zaurus PDA. Now, ‘ve used other handheld devices for Internet access, including a Blackberry and several cell phones, but there’s always been something missing. Well, not so with the C760. A nearly-usable keyboard, an amazing 640×480 resolution, wireless network access, and a web browser that does surprisingly well on just about any web site I’ve thrown at it!

Sharp Zaurus PDA

Incredible! That’s all I can say! I acquired a Sharp Zaurus C760 PDA this week. It’s a Japanese-only PDA that runs Linux. I am very impressed with it. It’s hands-down the most powerful and versatile PDA that I’ve ever seen. Being tge Linux hacker that I am, I’m having imense fun playing around. Drop in a wireless card, and now I can do just about any system maintenance remotely. Thats enough from me – back to playing!

Linux on the Laptop

I finally did it. I’ve been threatening to do it for a few years, but I think that Open Source software has matured to a point where I can actually run Linux on my work laptop for most of the time. I’m taking baby steps, though. I took the 20Gb partition and partitioned off 3Gb for Linux. As I slowly get rid of the junk over on the Windows partition, I’ll change the sizes of the partitions.

The installation was relatively painless, but it did give me one heart stopper. I used Partition Magic to shrink the existing XP partition and create a Linux partition. During the shrinking, Parition Magic aborted with an error. Upon rebooting, my machine wouldn’t boot up, but presented me with a blue-screen error. I had to boot in to recovery mode from the XP CD and run chkdsk /f to bring the machine back to life. After reading some comments on the Internet, I’ve come to the conclusion that I should run chkdsk /f every time just before running Partition Magic.

I installed Red Hat on the Linux partition. This is the first dual-boot install I’ve done, and it went very smoothly. It auto detected the XP partition, and configured Grub to dual boot. Again, my readings suggest that once I’ve done this, it’s best not to delete the Linux partition, or I might lose access to XP (the Grub configuration files are actually on the Linux partition, so deleting them makes Grub unable to read it’s configuration).

I haven’t had any problems with drivers for my Dell Inspiron 4100 laptop. Redhat sees all of my hardware, even my Orinoco wireless card.

The next job is to play around with some wireless sniffing software. There’s someone in my neighborhood that my wireless card tries to associate with once in a while. I’ll have to see if I can find out more…