Performa 6400/180 been hacked

Similar Messages

• Performa 6400/180 not booting up

  Performa 6400/180 not booting
  Posted: Jan 26, 2006 12:12 PM Reply Email
  I have a Performa 6400/180 that I am trying to refurbish as a starter computer for my grandson.
  1) When pressing the start button, I receive the start up chime but the system does not boot up
  Troubleshooting steps
  1) Have inserted OS 9 and attempted to boot from disk
  2) Inserted Disk Warrior 3.02 and attempted to boot from disk
  3) replaced Hard Drive and repeated above steps
  4) Replaced CD-ROM player and repeated above steps
  Any suggestions?

  Darrell,
  We still do not have a clear description of the symptoms. You say the screen is black with a CD in the drive. Is it black with no CD in the drive? Sceen lighting up or not is the critical question. The hard drive has no effect on the screen lighting up or not.
  If you have a black screen when there is no CD in the drive, replace the battery. If you have a raster (a grey screen) when there is no CD in, maybe the battery is usuable but replace it anyway if it is more than two years old or if the store sold you an old battery.
  If there is a click from the hard drive, that can mean either the drive is OK but is not mounting or the drive has some physical problem. We should always assume the drive can be fixed until we have exausted the possibility. Incidentally, 6400 and other early PowerMacs with IDE hard drive were unreliable at mounting the hard drive when OS 8.0 hard disk driver was copied to the drive. Even a replacement drive may not be formatted for Macintosh and/or using a reliable driver so let's guess this is the most likely culprit for the clicking sound.
  Disconnect evrything from the 6400 except the monitor, Apple ADB keyboard and mouse. Be especially carefull to disconnect external speakers and any SCSI cable (a fat cable with a huge connector). This strip down routine is very critical. Don't think I haven't been in your position 50 times.
  If the original CD for the 6400 can be found (read the label carefully for the "6400" designation), boot from it by inserting it, restart and hold the "C" key on an Apple ADB type keyboard (third party brands of keyboards may not boot the CD). If the CD will not boot after one minute, restart and press and hold hold these four keys within two seconds: command (also has the Apple outline logo on it) + option + shift + delete. Hold for at least one minute. Is there any light to the screen? If it is black, and the battery is new, restart holding these four keys: command + option + P + R. Hold the keys while you listen for a repeat of the startup music chime. If you hear no chime, watch for a blink of the screen raster light. Don't hold for more than four repeats. Then release all four keys and hold the "C" key to boot from the CD. If you successfully got the repeats but it still does not boot from the CD, restart holding the command + option + shift + delete keys again.
  If you don't have the original 6400 CD, you can try to boot from a retail (has a huge orange "9" on the white label) OS 9 CD. If you have an OS 9 CD that came with a new computer, it will not have the orange 9. Get a retail CD.

• Performa 6400/180 not booting

  I have a Performa 6400/180 that I am trying to refurbish as a starter computer for my grandson.
  1) When pressing the start button, I receive the start up chime but the system does not boot up
  Troubleshooting steps
  1) Have inserted OS 9 and attempted to boot from disk
  2) Inserted Disk Warrior 3.02 and attempted to boot from disk
  3) replaced Hard Drive and repeated above steps
  4) Replaced CD-ROM player and repeated above steps
  Any suggestions?

  Placing topic on another forum

• Performa 6400/180 keyboard

  I have a Performa 6400/180 that still works. My Wife who uses an Indigo iMac andwould like to use the keyboard that came with the Performa on her iMac. Will it work? I know the Performa keyboard conects to the computer via a 4 pin serial connector , I think and the iMac only has USB ports. Is there an adapter that converts the 4 pin serial to USB?

  Use a component such as this one.
  (37932)

• Wiring a Performa 6400/180 to a internet router

  I only recently got into working with the hardware aspect of computers. Until i could custom build PCs.
  But now I'm looking into putting some use to three 6400 Performas and a lightning struck Bondi blue Imac that have been in my basement for years.
  I have already taken a stick of ram out of one of the Performas to put in the one im working on now till I can purchase a nicer ram upgrade for it. However right now my problem is wiring this Performa into the internet router at my house.
  This would be my first time doing anything close to networking so I need some help choicing a PCI or Comm card to purchase for the Performa and then I would need to know what to do after I have installed the card into it.

  Add a comm slot II Ethernet card such as one of these:
  eBay search: (Twisted,"RJ45","RJ-45",Ethernet) (Comm,CSII,CS2)
  This leaves your PCI slot free for other options such as a USB card.
  The best way to ensure that the required software is installed is to install the card first and then Re-install the Mac OS. It sounds onerous, but only takes a few minutes -- your Mac checks to see which components are already in place and adds any that are missing or damaged.
  Configuring:
  If you have a Router under your control, use the TCP/IP Control panel to Connect using Ethernet and DHCP and the rest can be left blank. If it will not let you select Ethernet, be sure you are connected to a live source (like a port on a Hub, Switch, or Router, and then Restart. Be sure to close the TCP/IP Control Panel window and Save Changes, or the changes will not take effect. Then do something that forces Internet access:
  • Open a Browser window and enter a URL
  • Set the Time using a Network Time Server
  • Request automatic Software Update
  If all behaves correctly, you are done. Otherwise, open the TCP/IP Control panel and examine the info provided for clues about how far you got.

• In need of Forensic Specialist to perform complete analyisis on laptop - been hacked -

  Hey folks -
  This is Paintbrush a 56 year old who is relatively new to computers & currently at full all out war with hackers & going through a lonely hell for several months now - using defective weaponry - This devious and
  insidious infection must be extinguished before others suffer the way I have - I'll provide a thumb-nail sketch of what's up & what I think I need to resolve this crisis - any input will be welcome -
  Apparently I have been hacked for several months now and been taken for some cash -
  Many unauthorized credit card applications attempted
  HP Smart Friends - In 8 problem solving sessions in the past few weeks - failed
  Hackers and viruses still present
  Discovered my computer, purchased new 9/2012 on line Wallmart was manufactured in 2005 and was previously owned or at least used several times before it was sold to me as new -
  I believe Vista or XP or both were previously installed OS with Windows 7 layed over without thorough clean out-
  Event logs - even on windows 7 installed 2009, show significant activity prior to purchase or the installation of windows 7  - with thousands of event errors logged - many critical dating back to 2005
  several attempts to completely restore computer to pristine factory condition have - failed - viruses remain in creases & hide in innocuous files such as sample pictures and you-cam which I never downloaded - can't uninstall the files as they
  multiply - many games remain installed - last I played was probably Mario brothers - Parameters can't be reset - etc. etc.
  Many unauthorized users present with full permissions - can't delete them
  Before I introduce new equipment into a contaminated environment & have MS clean out the OS and have HP deal with the hardware, I'd like to have a full accounting of exactly what has transpired with this laptop since its manufacture date
  - including - all prior OS - all software - prior users - current unauthorized users - and their activities -
  Experience tells me - that it is important to enter any negociations from a stand-point of accurate knowledge & I need this as evidence should any problems arise with new equipment in the future which leads back to the root
  of present difficulties. This list could continue on and on and I need immediate assistance in securing the safety of my current life as well as my future. In the meantime - I am frozen and frightened without functioning tools to proceed and
  not knowing who to trust.   
         To the right professional, I am more than willing to grant remote access & pay a modest fee. I need for everything to first be backed up in case of error - and then perform a handful of task specific reports.
  I am in desperate need of help right now so any assistance would be greatly appreciated -  
          Sincerely, Paintbrush

  Hey folks -
  This is Paintbrush a 56 year old who is relatively new to computers & currently at full all out war with hackers & going through a lonely hell for several months now - using defective weaponry - This devious and
  insidious infection must be extinguished before others suffer the way I have - I'll provide a thumb-nail sketch of what's up & what I think I need to resolve this crisis - any input will be welcome -
  Apparently I have been hacked for several months now and been taken for some cash -
  Many unauthorized credit card applications attempted
  HP Smart Friends - In 8 problem solving sessions in the past few weeks - failed
  Hackers and viruses still present
  Discovered my computer, purchased new 9/2012 on line Wallmart was manufactured in 2005 and was previously owned or at least used several times before it was sold to me as new -
  I believe Vista or XP or both were previously installed OS with Windows 7 layed over without thorough clean out-
  Event logs - even on windows 7 installed 2009, show significant activity prior to purchase or the installation of windows 7  - with thousands of event errors logged - many critical dating back to 2005
  several attempts to completely restore computer to pristine factory condition have - failed - viruses remain in creases & hide in innocuous files such as sample pictures and you-cam which I never downloaded - can't uninstall the files as they
  multiply - many games remain installed - last I played was probably Mario brothers - Parameters can't be reset - etc. etc.
  Many unauthorized users present with full permissions - can't delete them
  Before I introduce new equipment into a contaminated environment & have MS clean out the OS and have HP deal with the hardware, I'd like to have a full accounting of exactly what has transpired with this laptop since its manufacture date
  - including - all prior OS - all software - prior users - current unauthorized users - and their activities -
  Experience tells me - that it is important to enter any negociations from a stand-point of accurate knowledge & I need this as evidence should any problems arise with new equipment in the future which leads back to the root
  of present difficulties. This list could continue on and on and I need immediate assistance in securing the safety of my current life as well as my future. In the meantime - I am frozen and frightened without functioning tools to proceed and
  not knowing who to trust.   
         To the right professional, I am more than willing to grant remote access & pay a modest fee. I need for everything to first be backed up in case of error - and then perform a handful of task specific reports.
  I am in desperate need of help right now so any assistance would be greatly appreciated -  
          Sincerely, Paintbrush

• Is My apache http file okay? Could have been hacked?????Why would 12.34.56.78:80 be the listening address I don't have any AT&T Services12

  I believe my apache server could have been hacked.  Is there a member of the community that could take a look at the paste of my http.conf file.  Thanks so much
  # Mac OS X / Mac OS X Server
  # The <IfDefine> blocks segregate server-specific directives
  # and also directives that only apply when Web Sharing or
  # server Web Service (as opposed to other services that need Apache) is on.
  # The launchd plist sets appropriate Define parameters.
  # Generally, desktop has no vhosts and server does; server has added modules,
  # custom virtual hosts are only activated when Web Service is on, and
  # default document root and personal web sites at ~username are only
  # activated when Web Sharing is on.
  # This is the main Apache HTTP server configuration file.  It contains the
  # configuration directives that give the server its instructions.
  # See <URL:http://httpd.apache.org/docs/2.2> for detailed information.
  # In particular, see
  # <URL:http://httpd.apache.org/docs/2.2/mod/directives.html>
  # for a discussion of each configuration directive.
  # Do NOT simply read the instructions in here without understanding
  # what they do.  They're here only as hints or reminders.  If you are unsure
  # consult the online docs. You have been warned. 
  # Configuration and logfile names: If the filenames you specify for many
  # of the server's control files begin with "/" (or "drive:/" for Win32), the
  # server will use that explicit path.  If the filenames do *not* begin
  # with "/", the value of ServerRoot is prepended -- so "log/foo_log"
  # with ServerRoot set to "/usr" will be interpreted by the
  # server as "/usr/log/foo_log".
  # ServerRoot: The top of the directory tree under which the server's
  # configuration, error, and log files are kept.
  # Do not add a slash at the end of the directory path.  If you point
  # ServerRoot at a non-local disk, be sure to point the LockFile directive
  # at a local disk.  If you wish to share the same ServerRoot for multiple
  # httpd daemons, you will need to change at least LockFile and PidFile.
  ServerRoot "/usr"
  # Listen: Allows you to bind Apache to specific IP addresses and/or
  # ports, instead of the default. See also the <VirtualHost>
  # directive.
  # Change this to Listen on specific IP addresses as shown below to
  # prevent Apache from glomming onto all bound IP addresses.
  #Listen 12.34.56.78:80
  <IfDefine !MACOSXSERVER>
  Listen 80
  </IfDefine>
  # Dynamic Shared Object (DSO) Support
  # To be able to use the functionality of a module which was built as a DSO you
  # have to place corresponding `LoadModule' lines at this location so the
  # directives contained in it are actually available _before_ they are used.
  # Statically compiled modules (those listed by `httpd -l') do not need
  # to be loaded here.
  # Example:
  # LoadModule foo_module modules/mod_foo.so
  LoadModule authn_file_module libexec/apache2/mod_authn_file.so
  LoadModule authz_host_module libexec/apache2/mod_authz_host.so
  LoadModule cache_module libexec/apache2/mod_cache.so
  LoadModule disk_cache_module libexec/apache2/mod_disk_cache.so
  LoadModule dumpio_module libexec/apache2/mod_dumpio.so
  LoadModule reqtimeout_module libexec/apache2/mod_reqtimeout.so
  LoadModule ext_filter_module libexec/apache2/mod_ext_filter.so
  LoadModule include_module libexec/apache2/mod_include.so
  LoadModule filter_module libexec/apache2/mod_filter.so
  LoadModule substitute_module libexec/apache2/mod_substitute.so
  LoadModule deflate_module libexec/apache2/mod_deflate.so
  LoadModule log_config_module libexec/apache2/mod_log_config.so
  LoadModule log_forensic_module libexec/apache2/mod_log_forensic.so
  LoadModule logio_module libexec/apache2/mod_logio.so
  LoadModule env_module libexec/apache2/mod_env.so
  LoadModule mime_magic_module libexec/apache2/mod_mime_magic.so
  LoadModule cern_meta_module libexec/apache2/mod_cern_meta.so
  LoadModule expires_module libexec/apache2/mod_expires.so
  LoadModule headers_module libexec/apache2/mod_headers.so
  LoadModule ident_module libexec/apache2/mod_ident.so
  LoadModule usertrack_module libexec/apache2/mod_usertrack.so
  #LoadModule unique_id_module libexec/apache2/mod_unique_id.so
  LoadModule setenvif_module libexec/apache2/mod_setenvif.so
  LoadModule version_module libexec/apache2/mod_version.so
  LoadModule proxy_module libexec/apache2/mod_proxy.so
  LoadModule proxy_http_module libexec/apache2/mod_proxy_http.so
  LoadModule proxy_scgi_module libexec/apache2/mod_proxy_scgi.so
  LoadModule proxy_balancer_module libexec/apache2/mod_proxy_balancer.so
  LoadModule ssl_module libexec/apache2/mod_ssl.so
  LoadModule mime_module libexec/apache2/mod_mime.so
  LoadModule dav_module libexec/apache2/mod_dav.so
  LoadModule autoindex_module libexec/apache2/mod_autoindex.so
  LoadModule asis_module libexec/apache2/mod_asis.so
  LoadModule info_module libexec/apache2/mod_info.so
  LoadModule cgi_module libexec/apache2/mod_cgi.so
  LoadModule dav_fs_module libexec/apache2/mod_dav_fs.so
  LoadModule vhost_alias_module libexec/apache2/mod_vhost_alias.so
  LoadModule negotiation_module libexec/apache2/mod_negotiation.so
  LoadModule dir_module libexec/apache2/mod_dir.so
  LoadModule imagemap_module libexec/apache2/mod_imagemap.so
  LoadModule actions_module libexec/apache2/mod_actions.so
  LoadModule speling_module libexec/apache2/mod_speling.so
  LoadModule alias_module libexec/apache2/mod_alias.so
  LoadModule rewrite_module libexec/apache2/mod_rewrite.so
  LoadModule php5_module libexec/apache2/libphp5.so
  #Apple specific modules
  LoadModule apple_userdir_module libexec/apache2/mod_userdir_apple.so
  LoadModule bonjour_module libexec/apache2/mod_bonjour.so
  <IfDefine !MACOSXSERVER>
  LoadModule authn_dbm_module libexec/apache2/mod_authn_dbm.so
  LoadModule authn_anon_module libexec/apache2/mod_authn_anon.so
  LoadModule authn_dbd_module libexec/apache2/mod_authn_dbd.so
  LoadModule authn_default_module libexec/apache2/mod_authn_default.so
  LoadModule auth_basic_module libexec/apache2/mod_auth_basic.so
  LoadModule auth_digest_module libexec/apache2/mod_auth_digest.so
  LoadModule authz_groupfile_module libexec/apache2/mod_authz_groupfile.so
  LoadModule authz_user_module libexec/apache2/mod_authz_user.so
  LoadModule authz_dbm_module libexec/apache2/mod_authz_dbm.so
  LoadModule authz_owner_module libexec/apache2/mod_authz_owner.so
  LoadModule authz_default_module libexec/apache2/mod_authz_default.so
  LoadModule mem_cache_module libexec/apache2/mod_mem_cache.so
  LoadModule dbd_module libexec/apache2/mod_dbd.so
  LoadModule proxy_connect_module libexec/apache2/mod_proxy_connect.so
  LoadModule proxy_ftp_module libexec/apache2/mod_proxy_ftp.so
  LoadModule proxy_ajp_module libexec/apache2/mod_proxy_ajp.so
  LoadModule status_module libexec/apache2/mod_status.so
  </IfDefine>
  <IfDefine MACOSXSERVER>
  LoadModule hfs_apple_module libexec/apache2/mod_hfs_apple.so
  #LoadModule auth_digest_apple_module libexec/apache2/mod_auth_digest_apple.so
  #LoadModule encoding_module libexec/apache2/mod_encoding.so
  #LoadModule jk_module libexec/apache2/mod_jk.so
  LoadModule apple_auth_module libexec/apache2/mod_auth_apple.so
  LoadModule spnego_auth_module libexec/apache2/mod_spnego_apple.so
  LoadModule apple_digest_module libexec/apache2/mod_digest_apple.so
  #LoadModule python_module libexec/apache2/mod_python.so
  LoadModule xsendfile_module libexec/apache2/mod_xsendfile.so
  LoadModule apple_status_module libexec/apache2/mod_status_apple.so
  </IfDefine>
  # If you wish httpd to run as a different user or group, you must run
  # httpd as root initially and it will switch. 
  # User/Group: The name (or #number) of the user/group to run httpd as.
  # It is usually good practice to create a dedicated user and group for
  # running httpd, as with most system services.
  User _www
  Group _www
  # 'Main' server configuration
  # The directives in this section set up the values used by the 'main'
  # server, which responds to any requests that aren't handled by a
  # <VirtualHost> definition.  These values also provide defaults for
  # any <VirtualHost> containers you may define later in the file.
  # All of these directives may appear inside <VirtualHost> containers,
  # in which case these default settings will be overridden for the
  # virtual host being defined.
  # ServerAdmin: Your address, where problems with the server should be
  # e-mailed.  This address appears on some server-generated pages, such
  # as error documents.  e.g. [email protected]
  ServerAdmin [email protected]
  # ServerName gives the name and port that the server uses to identify itself.
  # This can often be determined automatically, but we recommend you specify
  # it explicitly to prevent problems during startup.
  # If your host doesn't have a registered DNS name, enter its IP address here.
  #ServerName www.example.com:80
  <IfDefine MACOSXSERVER>
  DocumentRoot /var/empty
  <IfModule mod_auth_digest_apple.c>
          BrowserMatch "MSIE" AuthDigestEnableQueryStringHack=On
  </IfModule>
  <IfModule mod_headers.c>
          Header add MS-Author-Via "DAV"
          RequestHeader set X_FORWARDED_PROTO 'https' env=https
          RequestHeader set X_FORWARDED_PROTO 'http' env=!https
  </IfModule>
  <IfModule mod_encoding.c>
          EncodingEngine on
          NormalizeUsername on
          DefaultClientEncoding UTF-8
  # Windows XP?
          AddClientEncoding "Microsoft-WebDAV-MiniRedir/" MSUTF-8
  # Windows 2K SP2 with .NET
          AddClientEncoding "(Microsoft .* DAV\$)" MSUTF-8
  # Windows 2K SP2/Windows XP
          AddClientEncoding "(Microsoft .* DAV 1.1)" CP932
  # Windows XP?
          AddClientEncoding "Microsoft-WebDAV*" CP932
  # RealPlayer
          AddClientEncoding "RMA/*" CP932
  # MacOS X webdavfs
          AddClientEncoding "WebDAVFS" UTF-8
  # cadaver
          AddClientEncoding "cadaver/" EUC-JP
  </IfModule>
  <Directory /usr/share/web>
      AllowOverride None
      Options MultiViews FollowSymlinks
      Order allow,deny
      Allow from all
      Header Set Cache-Control no-cache
  </Directory>
  Alias /webmail /usr/share/web/webmail.html
  Alias /changepassword /usr/share/web/changepassword.html
  Alias /profilemanager /usr/share/web/profilemanager.html
  Alias /webcal /usr/share/web/webcal.html
  </IfDefine>
  <IfDefine !MACOSXSERVER>
  <IfDefine WEBSHARING_ON>
  # DocumentRoot: The directory out of which you will serve your
  # documents. By default, all requests are taken from this directory, but
  # symbolic links and aliases may be used to point to other locations.
  DocumentRoot "/Library/WebServer/Documents"
  # Each directory to which Apache has access can be configured with respect
  # to which services and features are allowed and/or disabled in that
  # directory (and its subdirectories).
  # First, we configure the "default" to be a very restrictive set of
  # features. 
  <Directory />
      Options FollowSymLinks
      AllowOverride None
      Order deny,allow
      Deny from all
  </Directory>
  # Note that from this point forward you must specifically allow
  # particular features to be enabled - so if something's not working as
  # you might expect, make sure that you have specifically enabled it
  # below.
  # This should be changed to whatever you set DocumentRoot to.
  <Directory "/Library/WebServer/Documents">
      # Possible values for the Options directive are "None", "All",
      # or any combination of:
      #   Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews
      # Note that "MultiViews" must be named *explicitly* --- "Options All"
      # doesn't give it to you.
      # The Options directive is both complicated and important.  Please see
      # http://httpd.apache.org/docs/2.2/mod/core.html#options
      # for more information.
      Options Indexes FollowSymLinks MultiViews
      # AllowOverride controls what directives may be placed in .htaccess files.
      # It can be "All", "None", or any combination of the keywords:
      #   Options FileInfo AuthConfig Limit
      AllowOverride None
      # Controls who can get stuff from this server.
      Order allow,deny
      Allow from all
  </Directory>
  # DirectoryIndex: sets the file that Apache will serve if a directory
  # is requested.
  <IfModule dir_module>
      DirectoryIndex index.html
  </IfModule>
  </IfDefine>
  </IfDefine>
  # The following lines prevent .htaccess and .htpasswd files from being
  # viewed by Web clients.
  <FilesMatch "^\.([Hh][Tt]|[Dd][Ss]_[Ss])">
      Order allow,deny
      Deny from all
      Satisfy All
  </FilesMatch>
  # Apple specific filesystem protection.
  <Files "rsrc">
      Order allow,deny
      Deny from all
      Satisfy All
  </Files>
  <DirectoryMatch ".*\.\.namedfork">
      Order allow,deny
      Deny from all
      Satisfy All
  </DirectoryMatch>
  # ErrorLog: The location of the error log file.
  # If you do not specify an ErrorLog directive within a <VirtualHost>
  # container, error messages relating to that virtual host will be
  # logged here.  If you *do* define an error logfile for a <VirtualHost>
  # container, that host's errors will be logged there and not here.
  ErrorLog "/private/var/log/apache2/error_log"
  # LogLevel: Control the number of messages logged to the error_log.
  # Possible values include: debug, info, notice, warn, error, crit,
  # alert, emerg.
  LogLevel warn
  <IfModule log_config_module>
      # The following directives define some format nicknames for use with
      # a CustomLog directive (see below).
      LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
      LogFormat "%v %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combinedvhost
      LogFormat "%h %l %u %t \"%r\" %>s %b" common
      LogFormat "%v %h %l %u %t \"%r\" %>s %b" commonvhost
      <IfModule logio_module>
        # You need to enable mod_logio.c to use %I and %O
        LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
        LogFormat "%v %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinediovhost
      </IfModule>
      # The location and format of the access logfile (Common Logfile Format).
      # If you do not define any access logfiles within a <VirtualHost>
      # container, they will be logged here.  Contrariwise, if you *do*
      # define per-<VirtualHost> access logfiles, transactions will be
      # logged therein and *not* in this file.
      CustomLog "/private/var/log/apache2/access_log" common
      # If you prefer a logfile with access, agent, and referer information
      # (Combined Logfile Format) you can use the following directive.
      #CustomLog "/private/var/log/apache2/access_log" combined
  </IfModule>
  <IfModule alias_module>
      # Redirect: Allows you to tell clients about documents that used to
      # exist in your server's namespace, but do not anymore. The client
      # will make a new request for the document at its new location.
      # Example:
      # Redirect permanent /foo http://www.example.com/bar
      # Alias: Maps web paths into filesystem paths and is used to
      # access content that does not live under the DocumentRoot.
      # Example:
      # Alias /webpath /full/filesystem/path
      # If you include a trailing / on /webpath then the server will
      # require it to be present in the URL.  You will also likely
      # need to provide a <Directory> section to allow access to
      # the filesystem path.
      # ScriptAlias: This controls which directories contain server scripts.
      # ScriptAliases are essentially the same as Aliases, except that
      # documents in the target directory are treated as applications and
      # run by the server when requested rather than as documents sent to the
      # client.  The same rules about trailing "/" apply to ScriptAlias
      # directives as to Alias.
      ScriptAliasMatch ^/cgi-bin/((?!(?i:webobjects)).*$) "/Library/WebServer/CGI-Executables/$1"
  </IfModule>
  <IfModule cgid_module>
      # ScriptSock: On threaded servers, designate the path to the UNIX
      # socket used to communicate with the CGI daemon of mod_cgid.
      #Scriptsock /private/var/run/cgisock
  </IfModule>
  # "/Library/WebServer/CGI-Executables" should be changed to whatever your ScriptAliased
  # CGI directory exists, if you have that configured.
  <Directory "/Library/WebServer/CGI-Executables">
      AllowOverride None
      Options None
      Order allow,deny
      Allow from all
  </Directory>
  # DefaultType: the default MIME type the server will use for a document
  # if it cannot otherwise determine one, such as from filename extensions.
  # If your server contains mostly text or HTML documents, "text/plain" is
  # a good value.  If most of your content is binary, such as applications
  # or images, you may want to use "application/octet-stream" instead to
  # keep browsers from trying to display binary files as though they are
  # text.
  DefaultType text/plain
  <IfModule mime_module>
      # TypesConfig points to the file containing the list of mappings from
      # filename extension to MIME-type.
      TypesConfig /private/etc/apache2/mime.types
      # AddType allows you to add to or override the MIME configuration
      # file specified in TypesConfig for specific file types.
      #AddType application/x-gzip .tgz
      # AddEncoding allows you to have certain browsers uncompress
      # information on the fly. Note: Not all browsers support this.
      #AddEncoding x-compress .Z
      #AddEncoding x-gzip .gz .tgz
      # If the AddEncoding directives above are commented-out, then you
      # probably should define those extensions to indicate media types:
      AddType application/x-compress .Z
      AddType application/x-gzip .gz .tgz
      # AddHandler allows you to map certain file extensions to "handlers":
      # actions unrelated to filetype. These can be either built into the server
      # or added with the Action directive (see below)
      # To use CGI scripts outside of ScriptAliased directories:
      # (You will also need to add "ExecCGI" to the "Options" directive.)
      #AddHandler cgi-script .cgi
      # For type maps (negotiated resources):
      #AddHandler type-map var
      # Filters allow you to process content before it is sent to the client.
      # To parse .shtml files for server-side includes (SSI):
      # (You will also need to add "Includes" to the "Options" directive.)
      #AddType text/html .shtml
      #AddOutputFilter INCLUDES .shtml
  </IfModule>
  # The mod_mime_magic module allows the server to use various hints from the
  # contents of the file itself to determine its type.  The MIMEMagicFile
  # directive tells the module where the hint definitions are located.
  #MIMEMagicFile /private/etc/apache2/magic
  # Customizable error responses come in three flavors:
  # 1) plain text 2) local redirects 3) external redirects
  # Some examples:
  #ErrorDocument 500 "The server made a boo boo."
  #ErrorDocument 404 /missing.html
  #ErrorDocument 404 "/cgi-bin/missing_handler.pl"
  #ErrorDocument 402 http://www.example.com/subscription_info.html
  # EnableMMAP and EnableSendfile: On systems that support it,
  # memory-mapping or the sendfile syscall is used to deliver
  # files.  This usually improves server performance, but must
  # be turned off when serving from networked-mounted
  # filesystems or if support for these functions is otherwise
  # broken on your system.
  #EnableMMAP off
  #EnableSendfile off
  TraceEnable off
  # Supplemental configuration
  # The configuration files in the /private/etc/apache2/extra/ directory can be
  # included to add extra features or to modify the default configuration of
  # the server, or you may simply copy their contents here and change as
  # necessary.
  # Server-pool management (MPM prefork specific)
  StartServers 1
  MinSpareServers 1
  MaxSpareServers 1
  # ServerLimit and MaxClients support n% syntax which sets them to a
  # fraction of the current RLIMIT_NPROC limit.
  ServerLimit 50%
  MaxClients 50%
  ListenBackLog 512
  MaxRequestsPerChild 100000
  # Timeout: The number of seconds before receives and sends time out.
  Timeout 300
  # KeepAlive: Whether or not to allow persistent connections (more than
  # one request per connection). Set to "Off" to deactivate.
  KeepAlive On
  # KeepAliveTimeout: Number of seconds to wait for the next request from the
  # same client on the same connection.
  KeepAliveTimeout 15
  # MaxKeepAliveRequests: The maximum number of requests to allow
  # during a persistent connection. Set to 0 to allow an unlimited amount.
  # We recommend you leave this number high, for maximum performance.
  MaxKeepAliveRequests 100
  # UseCanonicalName: Determines how Apache constructs self-referencing
  # URLs and the SERVER_NAME and SERVER_PORT variables.
  # When set "Off", Apache will use the Hostname and Port supplied
  # by the client.  When set "On", Apache will use the value of the
  # ServerName directive.
  UseCanonicalName Off
  # AccessFileName: The name of the file to look for in each directory
  # for additional configuration directives.  See also the AllowOverride
  # directive.
  AccessFileName .htaccess
  # ServerTokens
  # This directive configures what you return as the Server HTTP response
  # Header. The default is 'Full' which sends information about the OS-Type
  # and compiled in modules.
  # Set to one of:  Full | OS | Minor | Minimal | Major | Prod
  # where Full conveys the most information, and Prod the least.
  ServerTokens Full
  # Optionally add a line containing the server version and virtual host
  # name to server-generated pages (internal error documents, FTP directory
  # listings, mod_status and mod_info output etc., but not CGI generated
  # documents or custom error documents).
  # Set to "EMail" to also include a mailto: link to the ServerAdmin.
  # Set to one of:  On | Off | EMail
  ServerSignature On
  # HostnameLookups: Log the names of clients or just their IP addresses
  # e.g., www.apache.org (on) or 204.62.129.132 (off).
  # The default is off because it'd be overall better for the net if people
  # had to knowingly turn this feature on, since enabling it means that
  # each client request will result in AT LEAST one lookup request to the
  # nameserver.
  HostnameLookups Off
  # PidFile: The file in which the server should record its process
  # identification number when it starts.
  PidFile /var/run/httpd.pid
  # The accept serialization lock file MUST BE STORED ON A LOCAL DISK.
  LockFile "/private/var/log/apache2/accept.lock"
  <IfModule mod_rewrite.c>
      RewriteLock /var/log/apache2/rewrite.lock
  </IfModule>
  # Language settings
  Include /private/etc/apache2/extra/httpd-languages.conf
  <IfDefine WEBSHARING_ON>
  # Multi    -language error messages
  #Include /private/etc/apache2/extra/httpd-multilang-errordoc.conf
  # Fancy directory listings
  Include /private/etc/apache2/extra/httpd-autoindex.conf
  # User home directories
  Include /private/etc/apache2/extra/httpd-userdir.conf
  # Real-time info on requests and configuration
  #Include /private/etc/apache2/extra/httpd-info.conf
  # Virtual hosts
  #Include /private/etc/apache2/extra/httpd-vhosts.conf
  # Local access to the Apache HTTP Server Manual
  Include /private/etc/apache2/extra/httpd-manual.conf
  # Distributed authoring and versioning (WebDAV)
  #Include /private/etc/apache2/extra/httpd-dav.conf
  </IfDefine>
  # Secure (SSL/TLS) connections
  <IfDefine !MACOSXSERVER>
  #Include /private/etc/apache2/extra/httpd-ssl.conf
  </IfDefine>
  <IfDefine MACOSXSERVER>
  <IfModule mod_ssl.c>
          SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
          SSLPassPhraseDialog exec:/etc/apache2/getsslpassphrase
          SSLSessionCache shmcb:/var/run/ssl_scache(512000)
          SSLSessionCacheTimeout 300
          SSLMutex file:/var/run/ssl_mutex
          SSLRandomSeed startup builtin
          SSLRandomSeed connect builtin
          AddType application/x-x509-ca-cert crt
          AddType application/x-pkcs7-crl crl
  </IfModule>
  </IfDefine>
  <IfModule mod_jk.c>
          JKWorkersFile /etc/apache2/workers.properties
          JKLogFile /var/log/apache2/mod_jk.log
          JkShmFile /var/log/apache2/jk-runtime-status
  </IfModule>
  <IfModule php5_module>
      AddType application/x-httpd-php .php
      AddType application/x-httpd-php-source .phps
      <IfModule dir_module>
          DirectoryIndex index.html index.php
      </IfModule>
  </IfModule>
  <IfDefine !MACOSXSERVER>
      Include /etc/apache2/other/*.conf
  </IfDefine>
  <IfDefine MACOSXSERVER>
      <IfDefine WEBSERVICE_ON>
          Include /etc/apache2/sites/*.conf
      </IfDefine>
      <IfDefine !WEBSERVICE_ON>
          Include /etc/apache2/sites/virtual_host_global.conf
          Include /etc/apache2/sites/*_.conf
          Include /etc/apache2/sites/*__shadow.conf
      </IfDefine>
  </IfDefine>

  That's a comment in the file. It has no effect at all.

• I think my email server has been hacked!  How do I find out and fix it?

  Can someone tell me where or how to start to fix this?
  I'm running a MacMini Server with 10.6.8 running on it.
  I'm enclosing  a raw glimps of the SMTP log below.
  Jan 14 21:21:45 jbillings postfix/smtp[77947]: 1819E6A00ADD: to=<joetdr**[email protected]>, relay=mta7.am0.yahoodns.net[66.94.238.147]:25, conn_use=10, delay=143124, delays=143106/17/0.17/0.83, dsn=5.0.0, status=bounced (host mta7.am0.yahoodns.net[66.94.238.147] said: 554 delivery error: dd This user doesn't have a yahoo.com account (joetdr**[email protected]) [0] - mta1419.mail.mud.yahoo.com (in reply to end of DATA command))
  Jan 14 21:21:45 jbillings postfix/smtp[78102]: 0E33069DE752: to=<alys**[email protected]>, relay=none, delay=146722, delays=146709/7/5.3/0, dsn=4.4.3, status=deferred (Host or domain name not found. Name service error for name=hotmai.com type=MX: Host not found, try again)
  Jan 14 21:21:45 jbillings postfix/smtp[77906]: 2430369BBB4B: to=<ejm**[email protected]>, relay=mail.htc.net[216.114.114.146]:25, delay=151433, delays=151431/0/2.2/0, dsn=4.0.0, status=deferred (host mail.htc.net[216.114.114.146] refused to talk to me: 550 Barracuda Central, Listed in barracudacentral.org)
  Jan 14 21:21:45 jbillings postfix/smtp[77961]: 1805E69BC153: to=<staciebennet**[email protected]>, relay=mta7.am0.yahoodns.net[74.6.136.244]:25, conn_use=8, delay=151401, delays=151382/18/0.23/0.91, dsn=5.0.0, status=bounced (host mta7.am0.yahoodns.net[74.6.136.244] said: 554 delivery error: dd Sorry your message to staciebennet**[email protected] cannot be delivered. This account has been disabled or discontinued [#102]. - mta1257.mail.sk1.yahoo.com (in reply to end of DATA command))
  Jan 14 21:21:45 jbillings postfix/smtp[78085]: 1819269F313D: to=<wynter**[email protected]>, relay=mta7.am0.yahoodns.net[74.6.136.244]:25, conn_use=7, delay=144576, delays=144558/17/0.21/0.97, dsn=5.0.0, status=bounced (host mta7.am0.yahoodns.net[74.6.136.244] said: 554 delivery error: dd Sorry your message to wyntern**[email protected] cannot be delivered. This account has been disabled or discontinued [#102]. - mta1271.mail.sk1.yahoo.com (in reply to end of DATA command))
  Jan 14 21:21:45 jbillings postfix/smtp[78072]: 0F24F6A483C0: to=<brigi**[email protected]>, relay=mail.sunne-im-haerze.ch[80.74.131.2]:25, delay=132135, delays=132123/8.8/2.1/1, dsn=4.0.0, status=deferred (host mail.sunne-im-haerze.ch[80.74.131.2] said: 451 http://www.barracudanetworks.com/reputation/?pr=1&ip=69.34.116.38 (in reply to RCPT TO command))
  And here is my postconf log
  postconf -n
  2bounce_notice_recipient = postmaster
  access_map_reject_code = 554
  address_verify_default_transport = $default_transport
  address_verify_local_transport = $local_transport
  address_verify_map =
  address_verify_negative_cache = yes
  address_verify_negative_expire_time = 3d
  address_verify_negative_refresh_time = 3h
  address_verify_poll_count = 3
  address_verify_poll_delay = 3s
  address_verify_positive_expire_time = 31d
  address_verify_positive_refresh_time = 7d
  address_verify_relay_transport = $relay_transport
  address_verify_relayhost = $relayhost
  address_verify_sender = $double_bounce_sender
  address_verify_sender_dependent_relayhost_maps = $sender_dependent_relayhost_maps
  address_verify_service_name = verify
  address_verify_transport_maps = $transport_maps
  address_verify_virtual_transport = $virtual_transport
  alias_database = hash:/etc/aliases
  alias_maps = hash:/etc/aliases
  allow_mail_to_commands = alias, forward
  allow_mail_to_files = alias, forward
  always_bcc = [email protected]
  anvil_rate_time_unit = 60s
  anvil_status_update_time = 600s
  application_event_drain_time = 100s
  authorized_flush_users = static:anyone
  authorized_mailq_users = static:anyone
  authorized_submit_users = static:anyone
  backwards_bounce_logfile_compatibility = yes
  berkeley_db_create_buffer_size = 16777216
  berkeley_db_read_buffer_size = 131072
  best_mx_transport =
  biff = no
  body_checks_size_limit = 51200
  bounce_notice_recipient = postmaster
  bounce_queue_lifetime = 5d
  bounce_service_name = bounce
  bounce_size_limit = 50000
  bounce_template_file =
  canonical_classes = envelope_sender, envelope_recipient, header_sender, header_recipient
  check_for_od_forward = yes
  cleanup_service_name = cleanup
  command_directory = /usr/sbin
  command_execution_directory =
  command_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
  command_time_limit = 1000s
  config_directory = /etc/postfix
  connection_cache_protocol_timeout = 5s
  connection_cache_service_name = scache
  connection_cache_status_update_time = 600s
  connection_cache_ttl_limit = 2s
  content_filter = smtp-amavis:[127.0.0.1]:10024
  cyrus_sasl_config_path =
  daemon_directory = /usr/libexec/postfix
  daemon_timeout = 18000s
  data_directory = /var/lib/postfix
  debug_peer_level = 2
  debug_peer_list =
  default_database_type = hash
  default_delivery_slot_cost = 5
  default_delivery_slot_discount = 50
  default_delivery_slot_loan = 3
  default_destination_concurrency_failed_cohort_limit = 1
  default_destination_concurrency_limit = 20
  default_destination_concurrency_negative_feedback = 1
  default_destination_concurrency_positive_feedback = 1
  default_destination_rate_delay = 0s
  default_destination_recipient_limit = 50
  default_extra_recipient_limit = 1000
  default_minimum_delivery_slots = 3
  default_privs = nobody
  default_process_limit = 100
  default_rbl_reply = $rbl_code Service unavailable; $rbl_class [$rbl_what] blocked using $rbl_domain${rbl_reason?; $rbl_reason}
  default_recipient_limit = 20000
  default_recipient_refill_delay = 5s
  default_recipient_refill_limit = 100
  default_transport = smtp
  default_verp_delimiters = +=
  defer_code = 450
  defer_service_name = defer
  defer_transports =
  delay_logging_resolution_limit = 2
  delay_notice_recipient = postmaster
  delay_warning_time = 0h
  deliver_lock_attempts = 20
  deliver_lock_delay = 1s
  destination_concurrency_feedback_debug = no
  detect_8bit_encoding_header = yes
  dont_remove = 0
  double_bounce_sender = double-bounce
  duplicate_filter_limit = 1000
  empty_address_recipient = MAILER-DAEMON
  empty_address_relayhost_maps_lookup_key = <>
  enable_original_recipient = yes
  enable_server_options = yes
  error_notice_recipient = postmaster
  error_service_name = error
  execution_directory_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
  export_environment = TZ MAIL_CONFIG LANG
  fallback_transport =
  fallback_transport_maps =
  fast_flush_domains = $relay_domains
  fast_flush_purge_time = 7d
  fast_flush_refresh_time = 12h
  fault_injection_code = 0
  flush_service_name = flush
  fork_attempts = 5
  fork_delay = 1s
  forward_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
  forward_path = $home/.forward${recipient_delimiter}${extension}, $home/.forward
  frozen_delivered_to = yes
  hash_queue_depth = 1
  hash_queue_names = deferred,defer
  header_address_token_limit = 10240
  header_checks = pcre:/etc/postfix/custom_header_checks
  header_size_limit = 102400
  hopcount_limit = 50
  html_directory = /usr/share/doc/postfix/html
  import_environment = MAIL_CONFIG MAIL_DEBUG MAIL_LOGTAG TZ XAUTHORITY DISPLAY LANG=C
  in_flow_delay = 1s
  inet_interfaces = localhost
  inet_protocols = ipv4
  initial_destination_concurrency = 5
  internal_mail_filter_classes =
  invalid_hostname_reject_code = 501
  ipc_idle = 5s
  ipc_timeout = 3600s
  ipc_ttl = 1000s
  line_length_limit = 2048
  lmtp_bind_address =
  lmtp_bind_address6 =
  lmtp_body_checks =
  lmtp_cname_overrides_servername = no
  lmtp_connect_timeout = 0s
  lmtp_connection_cache_destinations =
  lmtp_connection_cache_on_demand = yes
  lmtp_connection_cache_time_limit = 2s
  lmtp_connection_reuse_time_limit = 300s
  lmtp_data_done_timeout = 600s
  lmtp_data_init_timeout = 120s
  lmtp_data_xfer_timeout = 180s
  lmtp_defer_if_no_mx_address_found = no
  lmtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  lmtp_destination_concurrency_limit = $default_destination_concurrency_limit
  lmtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  lmtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  lmtp_destination_rate_delay = $default_destination_rate_delay
  lmtp_destination_recipient_limit = $default_destination_recipient_limit
  lmtp_discard_lhlo_keyword_address_maps =
  lmtp_discard_lhlo_keywords =
  lmtp_enforce_tls = no
  lmtp_generic_maps =
  lmtp_header_checks =
  lmtp_host_lookup = dns
  lmtp_initial_destination_concurrency = $initial_destination_concurrency
  lmtp_lhlo_name = $myhostname
  lmtp_lhlo_timeout = 300s
  lmtp_line_length_limit = 990
  lmtp_mail_timeout = 300s
  lmtp_mime_header_checks =
  lmtp_mx_address_limit = 5
  lmtp_mx_session_limit = 2
  lmtp_nested_header_checks =
  lmtp_pix_workaround_delay_time = 10s
  lmtp_pix_workaround_maps =
  lmtp_pix_workaround_threshold_time = 500s
  lmtp_pix_workarounds = disable_esmtp,delay_dotcrlf
  lmtp_quit_timeout = 300s
  lmtp_quote_rfc821_envelope = yes
  lmtp_randomize_addresses = yes
  lmtp_rcpt_timeout = 300s
  lmtp_rset_timeout = 20s
  lmtp_sasl_auth_cache_name =
  lmtp_sasl_auth_cache_time = 90d
  lmtp_sasl_auth_soft_bounce = yes
  lmtp_sasl_mechanism_filter =
  lmtp_sasl_path =
  lmtp_sasl_security_options = noplaintext, noanonymous
  lmtp_sasl_tls_security_options = $lmtp_sasl_security_options
  lmtp_sasl_tls_verified_security_options = $lmtp_sasl_tls_security_options
  lmtp_sasl_type = cyrus
  lmtp_send_xforward_command = no
  lmtp_sender_dependent_authentication = no
  lmtp_skip_5xx_greeting = yes
  lmtp_starttls_timeout = 300s
  lmtp_tcp_port = 24
  lmtp_tls_CAfile =
  lmtp_tls_CApath =
  lmtp_tls_cert_file =
  lmtp_tls_dcert_file =
  lmtp_tls_dkey_file = $lmtp_tls_dcert_file
  lmtp_tls_enforce_peername = yes
  lmtp_tls_exclude_ciphers =
  lmtp_tls_fingerprint_cert_match =
  lmtp_tls_fingerprint_digest = md5
  lmtp_tls_key_file = $lmtp_tls_cert_file
  lmtp_tls_loglevel = 0
  lmtp_tls_mandatory_ciphers = medium
  lmtp_tls_mandatory_exclude_ciphers =
  lmtp_tls_mandatory_protocols = SSLv3, TLSv1
  lmtp_tls_note_starttls_offer = no
  lmtp_tls_per_site =
  lmtp_tls_policy_maps =
  lmtp_tls_scert_verifydepth = 9
  lmtp_tls_secure_cert_match = nexthop
  lmtp_tls_security_level =
  lmtp_tls_session_cache_database =
  lmtp_tls_session_cache_timeout = 3600s
  lmtp_tls_verify_cert_match = hostname
  lmtp_use_tls = no
  lmtp_xforward_timeout = 300s
  local_command_shell =
  local_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  local_destination_concurrency_limit = 2
  local_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  local_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  local_destination_rate_delay = $default_destination_rate_delay
  local_destination_recipient_limit = 1
  local_header_rewrite_clients = permit_inet_interfaces
  local_initial_destination_concurrency = $initial_destination_concurrency
  local_recipient_maps = proxy:unix:passwd.byname $alias_maps
  local_transport = local:$myhostname
  luser_relay =
  mail_name = Postfix
  mail_owner = _postfix
  mail_release_date = 20080902
  mail_spool_directory = /var/mail
  mail_version = 2.5.5
  mailbox_command =
  mailbox_command_maps =
  mailbox_delivery_lock = flock, dotlock
  mailbox_size_limit = 0
  mailbox_transport = dovecot
  mailbox_transport_maps =
  mailq_path = /usr/bin/mailq
  manpage_directory = /usr/share/man
  maps_rbl_domains =
  maps_rbl_reject_code = 554
  masquerade_classes = envelope_sender, header_sender, header_recipient
  masquerade_domains =
  masquerade_exceptions =
  max_idle = 100s
  max_use = 100
  maximal_backoff_time = 4000s
  maximal_queue_lifetime = 5d
  message_reject_characters =
  message_size_limit = 209715200
  message_strip_characters =
  milter_command_timeout = 30s
  milter_connect_macros = j {daemon_name} v
  milter_connect_timeout = 30s
  milter_content_timeout = 300s
  milter_data_macros = i
  milter_default_action = tempfail
  milter_end_of_data_macros = i
  milter_end_of_header_macros = i
  milter_helo_macros = {tls_version} {cipher} {cipher_bits} {cert_subject} {cert_issuer}
  milter_macro_daemon_name = $myhostname
  milter_macro_v = $mail_name $mail_version
  milter_mail_macros = i {auth_type} {auth_authen} {auth_author} {mail_addr}
  milter_protocol = 2
  milter_rcpt_macros = i {rcpt_addr}
  milter_unknown_command_macros =
  mime_boundary_length_limit = 2048
  mime_header_checks = $header_checks
  mime_nesting_limit = 100
  minimal_backoff_time = 300s
  multi_recipient_bounce_reject_code = 550
  mydestination = $myhostname, localhost.$mydomain, localhost, jbillings.net, rebuildingtogetherliberty.org, speedofflight.net, billingsconstruction.com, kcscsports.net, rebuildingtogetherclaycounty.org, $mydomain
  mydomain = net
  mydomain_fallback = localhost
  myhostname = www.jbillings.net
  mynetworks = 127.0.0.0/8,192.168.2.0/24
  mynetworks_style = subnet
  myorigin = $myhostname
  nested_header_checks = $header_checks
  newaliases_path = /usr/bin/newaliases
  non_fqdn_reject_code = 504
  non_smtpd_milters =
  notify_classes = resource, software
  parent_domain_matches_subdomains = debug_peer_list,fast_flush_domains,mynetworks,permit_mx_backup_networks,qmqpd_a uthorized_clients,relay_domains,smtpd_access_maps
  permit_mx_backup_networks =
  pickup_service_name = pickup
  plaintext_reject_code = 450
  prepend_delivered_header = command, file, forward
  process_id_directory = pid
  propagate_unmatched_extensions = canonical, virtual
  proxy_interfaces =
  proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $sender_bcc_maps $recipient_bcc_maps $smtp_generic_maps $lmtp_generic_maps
  proxy_write_maps = $smtp_sasl_auth_cache_name $lmtp_sasl_auth_cache_name
  qmgr_clog_warn_time = 300s
  qmgr_fudge_factor = 100
  qmgr_message_active_limit = 20000
  qmgr_message_recipient_limit = 20000
  qmgr_message_recipient_minimum = 10
  qmqpd_authorized_clients =
  qmqpd_client_port_logging = no
  qmqpd_error_delay = 1s
  qmqpd_timeout = 300s
  queue_directory = /private/var/spool/postfix
  queue_file_attribute_count_limit = 100
  queue_minfree = 0
  queue_run_delay = 300s
  queue_service_name = qmgr
  rbl_reply_maps =
  readme_directory = /usr/share/doc/postfix
  receive_override_options =
  recipient_bcc_maps =
  recipient_canonical_classes = envelope_recipient, header_recipient
  recipient_delimiter = +
  reject_code = 554
  relay_clientcerts =
  relay_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  relay_destination_concurrency_limit = $default_destination_concurrency_limit
  relay_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  relay_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  relay_destination_rate_delay = $default_destination_rate_delay
  relay_destination_recipient_limit = $default_destination_recipient_limit
  relay_domains = $mydestination
  relay_domains_reject_code = 554
  relay_initial_destination_concurrency = $initial_destination_concurrency
  relay_recipient_maps =
  relay_transport = relay
  relayhost =
  relocated_maps =
  remote_header_rewrite_domain =
  resolve_null_domain = no
  resolve_numeric_domain = no
  rewrite_service_name = rewrite
  sample_directory = /usr/share/doc/postfix/examples
  send_cyrus_sasl_authzid = no
  sender_bcc_maps =
  sender_canonical_classes = envelope_sender, header_sender
  sender_canonical_maps =
  sender_dependent_relayhost_maps =
  sendmail_path = /usr/sbin/sendmail
  service_throttle_time = 60s
  setgid_group = _postdrop
  showq_service_name = showq
  smtp_bind_address6 =
  smtp_body_checks =
  smtp_cname_overrides_servername = no
  smtp_connect_timeout = 30s
  smtp_connection_cache_destinations =
  smtp_connection_cache_on_demand = yes
  smtp_connection_cache_time_limit = 2s
  smtp_connection_reuse_time_limit = 300s
  smtp_data_done_timeout = 600s
  smtp_data_init_timeout = 120s
  smtp_data_xfer_timeout = 180s
  smtp_defer_if_no_mx_address_found = no
  smtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  smtp_destination_concurrency_limit = $default_destination_concurrency_limit
  smtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  smtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  smtp_destination_rate_delay = $default_destination_rate_delay
  smtp_destination_recipient_limit = $default_destination_recipient_limit
  smtp_discard_ehlo_keyword_address_maps =
  smtp_discard_ehlo_keywords =
  smtp_enforce_tls = no
  smtp_fallback_relay = $fallback_relay
  smtp_generic_maps =
  smtp_header_checks =
  smtp_helo_name = $myhostname
  smtp_helo_timeout = 300s
  smtp_host_lookup = dns
  smtp_initial_destination_concurrency = $initial_destination_concurrency
  smtp_line_length_limit = 990
  smtp_mail_timeout = 300s
  smtp_mime_header_checks =
  smtp_mx_address_limit = 5
  smtp_mx_session_limit = 2
  smtp_nested_header_checks =
  smtp_pix_workaround_delay_time = 10s
  smtp_pix_workaround_maps =
  smtp_pix_workaround_threshold_time = 500s
  smtp_pix_workarounds = disable_esmtp,delay_dotcrlf
  smtp_quit_timeout = 300s
  smtp_quote_rfc821_envelope = yes
  smtp_rcpt_timeout = 300s
  smtp_rset_timeout = 20s
  smtp_sasl_auth_cache_name =
  smtp_sasl_auth_cache_time = 90d
  smtp_sasl_auth_soft_bounce = yes
  smtp_sasl_mechanism_filter =
  smtp_sasl_password_maps =
  smtp_sasl_path =
  smtp_sasl_security_options = noplaintext, noanonymous
  smtp_sasl_tls_security_options = $smtp_sasl_security_options
  smtp_sasl_tls_verified_security_options = $smtp_sasl_tls_security_options
  smtp_sasl_type = cyrus
  smtp_send_xforward_command = no
  smtp_sender_dependent_authentication = no
  smtp_starttls_timeout = 300s
  smtp_tls_CAfile =
  smtp_tls_CApath =
  smtp_tls_cert_file =
  smtp_tls_dcert_file =
  smtp_tls_dkey_file = $smtp_tls_dcert_file
  smtp_tls_enforce_peername = yes
  smtp_tls_exclude_ciphers =
  smtp_tls_fingerprint_cert_match =
  smtp_tls_fingerprint_digest = md5
  smtp_tls_key_file = $smtp_tls_cert_file
  smtp_tls_loglevel = 0
  smtp_tls_mandatory_ciphers = medium
  smtp_tls_mandatory_exclude_ciphers =
  smtp_tls_mandatory_protocols = SSLv3, TLSv1
  smtp_tls_note_starttls_offer = no
  smtp_tls_per_site =
  smtp_tls_policy_maps =
  smtp_tls_scert_verifydepth = 9
  smtp_tls_secure_cert_match = nexthop, dot-nexthop
  smtp_tls_security_level =
  smtp_tls_session_cache_database =
  smtp_tls_session_cache_timeout = 3600s
  smtp_tls_verify_cert_match = hostname
  smtp_use_tls = no
  smtp_xforward_timeout = 300s
  smtpd_authorized_verp_clients = $authorized_verp_clients
  smtpd_authorized_xclient_hosts =
  smtpd_authorized_xforward_hosts =
  smtpd_banner = $myhostname ESMTP $mail_name
  smtpd_client_connection_count_limit = 50
  smtpd_client_connection_rate_limit = 0
  smtpd_client_event_limit_exceptions = ${smtpd_client_connection_limit_exceptions:$mynetworks}
  smtpd_client_message_rate_limit = 0
  smtpd_client_new_tls_session_rate_limit = 0
  smtpd_client_port_logging = no
  smtpd_client_recipient_rate_limit = 0
  smtpd_client_restrictions = permit_mynetworks permit_sasl_authenticated reject_rbl_client zen.spamhaus.org permit
  smtpd_data_restrictions =
  smtpd_delay_open_until_valid_rcpt = yes
  smtpd_discard_ehlo_keyword_address_maps =
  smtpd_discard_ehlo_keywords =
  smtpd_end_of_data_restrictions =
  smtpd_enforce_tls = yes
  smtpd_error_sleep_time = 1s
  smtpd_etrn_restrictions =
  smtpd_expansion_filter = \t\40!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghi jklmnopqrstuvwxyz{|}~
  smtpd_forbidden_commands = CONNECT GET POST
  smtpd_hard_error_limit = 20
  smtpd_helo_required = yes
  smtpd_helo_restrictions = reject_invalid_helo_hostname reject_non_fqdn_helo_hostname
  smtpd_history_flush_threshold = 100
  smtpd_junk_command_limit = 100
  smtpd_milters =
  smtpd_noop_commands =
  smtpd_null_access_lookup_key = <>
  smtpd_peername_lookup = yes
  smtpd_policy_service_max_idle = 300s
  smtpd_policy_service_max_ttl = 1000s
  smtpd_policy_service_timeout = 100s
  smtpd_proxy_ehlo = $myhostname
  smtpd_proxy_filter =
  smtpd_proxy_timeout = 100s
  smtpd_pw_server_security_options = cram-md5
  smtpd_recipient_limit = 1000
  smtpd_recipient_overshoot_limit = 1000
  smtpd_recipient_restrictions = permit_sasl_authenticated permit_mynetworks  reject_unauth_destination check_policy_service unix:private/policy permit
  smtpd_reject_unlisted_recipient = yes
  smtpd_reject_unlisted_sender = no
  smtpd_restriction_classes =
  smtpd_sasl_auth_enable = yes
  smtpd_sasl_authenticated_header = no
  smtpd_sasl_exceptions_networks =
  smtpd_sasl_path = smtpd
  smtpd_sasl_security_options = noanonymous
  smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
  smtpd_sasl_type = cyrus
  smtpd_sender_login_maps =
  smtpd_sender_restrictions =
  smtpd_soft_error_limit = 10
  smtpd_starttls_timeout = 300s
  smtpd_timeout = 300s
  smtpd_tls_CAfile = /etc/certificates/server.jbillings.net.0614D66F5D64A8714C5BD87DB26F4D5999C16541 .chain.pem
  smtpd_tls_CApath =
  smtpd_tls_always_issue_session_ids = yes
  smtpd_tls_ask_ccert = no
  smtpd_tls_auth_only = no
  smtpd_tls_ccert_verifydepth = 9
  smtpd_tls_cert_file = /etc/certificates/server.jbillings.net.0614D66F5D64A8714C5BD87DB26F4D5999C16541 .cert.pem
  smtpd_tls_dcert_file =
  smtpd_tls_dh1024_param_file =
  smtpd_tls_dh512_param_file =
  smtpd_tls_dkey_file = $smtpd_tls_dcert_file
  smtpd_tls_exclude_ciphers = SSLv2, aNULL, ADH, eNULL
  smtpd_tls_fingerprint_digest = md5
  smtpd_tls_key_file = /etc/certificates/server.jbillings.net.0614D66F5D64A8714C5BD87DB26F4D5999C16541 .key.pem
  smtpd_tls_loglevel = 0
  smtpd_tls_mandatory_ciphers = medium
  smtpd_tls_mandatory_exclude_ciphers =
  smtpd_tls_mandatory_protocols = SSLv3, TLSv1
  smtpd_tls_received_header = no
  smtpd_tls_req_ccert = no
  smtpd_tls_security_level =
  smtpd_tls_session_cache_database =
  smtpd_tls_session_cache_timeout = 3600s
  smtpd_tls_wrappermode = no
  smtpd_use_pw_server = yes
  smtpd_use_tls = yes
  stale_lock_time = 500s
  stress =
  strict_mailbox_ownership = yes
  syslog_facility = mail
  syslog_name = postfix
  tls_daemon_random_bytes = 32
  tls_export_cipherlist = ALL:+RC4:@STRENGTH
  tls_high_cipherlist = ALL:!EXPORT:!LOW:!MEDIUM:+RC4:@STRENGTH
  tls_low_cipherlist = ALL:!EXPORT:+RC4:@STRENGTH
  tls_medium_cipherlist = ALL:!EXPORT:!LOW:+RC4:@STRENGTH
  tls_null_cipherlist = eNULL:!aNULL
  tls_random_bytes = 32
  tls_random_exchange_name = ${data_directory}/prng_exch
  tls_random_prng_update_period = 3600s
  tls_random_reseed_period = 3600s
  tls_random_source = dev:/dev/urandom
  trace_service_name = trace
  transport_maps =
  transport_retry_time = 60s
  trigger_timeout = 10s
  undisclosed_recipients_header = To: undisclosed-recipients:;
  unknown_address_reject_code = 450
  unknown_client_reject_code = 450
  unknown_hostname_reject_code = 450
  unknown_local_recipient_reject_code = 550
  unknown_relay_recipient_reject_code = 550
  unknown_virtual_alias_reject_code = 550
  unknown_virtual_mailbox_reject_code = 550
  unverified_recipient_reject_code = 450
  unverified_sender_reject_code = 450
  use_getpwnam_ext = yes
  use_od_delivery_path = no
  verp_delimiter_filter = -=+
  virtual_alias_domains = $virtual_alias_maps
  virtual_alias_expansion_limit = 1000
  virtual_alias_maps =
  virtual_alias_recursion_limit = 1000
  virtual_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  virtual_destination_concurrency_limit = $default_destination_concurrency_limit
  virtual_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  virtual_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  virtual_destination_rate_delay = $default_destination_rate_delay
  virtual_destination_recipient_limit = $default_destination_recipient_limit
  virtual_gid_maps =
  virtual_initial_destination_concurrency = $initial_destination_concurrency
  virtual_mailbox_base =
  virtual_mailbox_domains = $virtual_mailbox_maps
  virtual_mailbox_limit = 51200000
  virtual_mailbox_lock = fcntl, dotlock
  virtual_mailbox_maps =
  virtual_minimum_uid = 100
  virtual_transport = virtual
  virtual_uid_maps =
  < Emails Edited By Host >

  Thanks for the reply.
  To reply to your question.  I forward a copy of all emails to an account "[email protected]" suddenly on this past Thursday I find some 66,000+ emails in the junk folder of that email account and a tremendous amount of actiivity on my server email.  So my first thought is that I've been hacked. 
  All actual email accounts seem to be functioning fine, and I've had everyone change their email passwords.
  The unusual amount of activity sent up the red flag.
  BTW. I ran the postconf -n again and am including it.
  Last login: Sat Jan 14 21:25:44 on ttys000
  jbillings:~ sysadmin$ postconf -n
  2bounce_notice_recipient = postmaster
  access_map_reject_code = 554
  address_verify_default_transport = $default_transport
  address_verify_local_transport = $local_transport
  address_verify_map =
  address_verify_negative_cache = yes
  address_verify_negative_expire_time = 3d
  address_verify_negative_refresh_time = 3h
  address_verify_poll_count = 3
  address_verify_poll_delay = 3s
  address_verify_positive_expire_time = 31d
  address_verify_positive_refresh_time = 7d
  address_verify_relay_transport = $relay_transport
  address_verify_relayhost = $relayhost
  address_verify_sender = $double_bounce_sender
  address_verify_sender_dependent_relayhost_maps = $sender_dependent_relayhost_maps
  address_verify_service_name = verify
  address_verify_transport_maps = $transport_maps
  address_verify_virtual_transport = $virtual_transport
  alias_database = hash:/etc/aliases
  alias_maps = hash:/etc/aliases
  allow_mail_to_commands = alias, forward
  allow_mail_to_files = alias, forward
  always_bcc = [email protected]
  anvil_rate_time_unit = 60s
  anvil_status_update_time = 600s
  application_event_drain_time = 100s
  authorized_flush_users = static:anyone
  authorized_mailq_users = static:anyone
  authorized_submit_users = static:anyone
  backwards_bounce_logfile_compatibility = yes
  berkeley_db_create_buffer_size = 16777216
  berkeley_db_read_buffer_size = 131072
  best_mx_transport =
  biff = no
  body_checks_size_limit = 51200
  bounce_notice_recipient = postmaster
  bounce_queue_lifetime = 5d
  bounce_service_name = bounce
  bounce_size_limit = 50000
  bounce_template_file =
  canonical_classes = envelope_sender, envelope_recipient, header_sender, header_recipient
  check_for_od_forward = yes
  cleanup_service_name = cleanup
  command_directory = /usr/sbin
  command_execution_directory =
  command_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
  command_time_limit = 1000s
  config_directory = /etc/postfix
  connection_cache_protocol_timeout = 5s
  connection_cache_service_name = scache
  connection_cache_status_update_time = 600s
  connection_cache_ttl_limit = 2s
  content_filter = smtp-amavis:[127.0.0.1]:10024
  cyrus_sasl_config_path =
  daemon_directory = /usr/libexec/postfix
  daemon_timeout = 18000s
  data_directory = /var/lib/postfix
  debug_peer_level = 2
  debug_peer_list =
  default_database_type = hash
  default_delivery_slot_cost = 5
  default_delivery_slot_discount = 50
  default_delivery_slot_loan = 3
  default_destination_concurrency_failed_cohort_limit = 1
  default_destination_concurrency_limit = 20
  default_destination_concurrency_negative_feedback = 1
  default_destination_concurrency_positive_feedback = 1
  default_destination_rate_delay = 0s
  default_destination_recipient_limit = 50
  default_extra_recipient_limit = 1000
  default_minimum_delivery_slots = 3
  default_privs = nobody
  default_process_limit = 100
  default_rbl_reply = $rbl_code Service unavailable; $rbl_class [$rbl_what] blocked using $rbl_domain${rbl_reason?; $rbl_reason}
  default_recipient_limit = 20000
  default_recipient_refill_delay = 5s
  default_recipient_refill_limit = 100
  default_transport = smtp
  default_verp_delimiters = +=
  defer_code = 450
  defer_service_name = defer
  defer_transports =
  delay_logging_resolution_limit = 2
  delay_notice_recipient = postmaster
  delay_warning_time = 0h
  deliver_lock_attempts = 20
  deliver_lock_delay = 1s
  destination_concurrency_feedback_debug = no
  detect_8bit_encoding_header = yes
  dont_remove = 0
  double_bounce_sender = double-bounce
  duplicate_filter_limit = 1000
  empty_address_recipient = MAILER-DAEMON
  empty_address_relayhost_maps_lookup_key = <>
  enable_original_recipient = yes
  enable_server_options = yes
  error_notice_recipient = postmaster
  error_service_name = error
  execution_directory_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
  export_environment = TZ MAIL_CONFIG LANG
  fallback_transport =
  fallback_transport_maps =
  fast_flush_domains = $relay_domains
  fast_flush_purge_time = 7d
  fast_flush_refresh_time = 12h
  fault_injection_code = 0
  flush_service_name = flush
  fork_attempts = 5
  fork_delay = 1s
  forward_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
  forward_path = $home/.forward${recipient_delimiter}${extension}, $home/.forward
  frozen_delivered_to = yes
  hash_queue_depth = 1
  hash_queue_names = deferred,defer
  header_address_token_limit = 10240
  header_checks = pcre:/etc/postfix/custom_header_checks
  header_size_limit = 102400
  hopcount_limit = 50
  html_directory = /usr/share/doc/postfix/html
  import_environment = MAIL_CONFIG MAIL_DEBUG MAIL_LOGTAG TZ XAUTHORITY DISPLAY LANG=C
  in_flow_delay = 1s
  inet_interfaces = localhost
  inet_protocols = ipv4
  initial_destination_concurrency = 5
  internal_mail_filter_classes =
  invalid_hostname_reject_code = 501
  ipc_idle = 5s
  ipc_timeout = 3600s
  ipc_ttl = 1000s
  line_length_limit = 2048
  lmtp_bind_address =
  lmtp_bind_address6 =
  lmtp_body_checks =
  lmtp_cname_overrides_servername = no
  lmtp_connect_timeout = 0s
  lmtp_connection_cache_destinations =
  lmtp_connection_cache_on_demand = yes
  lmtp_connection_cache_time_limit = 2s
  lmtp_connection_reuse_time_limit = 300s
  lmtp_data_done_timeout = 600s
  lmtp_data_init_timeout = 120s
  lmtp_data_xfer_timeout = 180s
  lmtp_defer_if_no_mx_address_found = no
  lmtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  lmtp_destination_concurrency_limit = $default_destination_concurrency_limit
  lmtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  lmtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  lmtp_destination_rate_delay = $default_destination_rate_delay
  lmtp_destination_recipient_limit = $default_destination_recipient_limit
  lmtp_discard_lhlo_keyword_address_maps =
  lmtp_discard_lhlo_keywords =
  lmtp_enforce_tls = no
  lmtp_generic_maps =
  lmtp_header_checks =
  lmtp_host_lookup = dns
  lmtp_initial_destination_concurrency = $initial_destination_concurrency
  lmtp_lhlo_name = $myhostname
  lmtp_lhlo_timeout = 300s
  lmtp_line_length_limit = 990
  lmtp_mail_timeout = 300s
  lmtp_mime_header_checks =
  lmtp_mx_address_limit = 5
  lmtp_mx_session_limit = 2
  lmtp_nested_header_checks =
  lmtp_pix_workaround_delay_time = 10s
  lmtp_pix_workaround_maps =
  lmtp_pix_workaround_threshold_time = 500s
  lmtp_pix_workarounds = disable_esmtp,delay_dotcrlf
  lmtp_quit_timeout = 300s
  lmtp_quote_rfc821_envelope = yes
  lmtp_randomize_addresses = yes
  lmtp_rcpt_timeout = 300s
  lmtp_rset_timeout = 20s
  lmtp_sasl_auth_cache_name =
  lmtp_sasl_auth_cache_time = 90d
  lmtp_sasl_auth_soft_bounce = yes
  lmtp_sasl_mechanism_filter =
  lmtp_sasl_path =
  lmtp_sasl_security_options = noplaintext, noanonymous
  lmtp_sasl_tls_security_options = $lmtp_sasl_security_options
  lmtp_sasl_tls_verified_security_options = $lmtp_sasl_tls_security_options
  lmtp_sasl_type = cyrus
  lmtp_send_xforward_command = no
  lmtp_sender_dependent_authentication = no
  lmtp_skip_5xx_greeting = yes
  lmtp_starttls_timeout = 300s
  lmtp_tcp_port = 24
  lmtp_tls_CAfile =
  lmtp_tls_CApath =
  lmtp_tls_cert_file =
  lmtp_tls_dcert_file =
  lmtp_tls_dkey_file = $lmtp_tls_dcert_file
  lmtp_tls_enforce_peername = yes
  lmtp_tls_exclude_ciphers =
  lmtp_tls_fingerprint_cert_match =
  lmtp_tls_fingerprint_digest = md5
  lmtp_tls_key_file = $lmtp_tls_cert_file
  lmtp_tls_loglevel = 0
  lmtp_tls_mandatory_ciphers = medium
  lmtp_tls_mandatory_exclude_ciphers =
  lmtp_tls_mandatory_protocols = SSLv3, TLSv1
  lmtp_tls_note_starttls_offer = no
  lmtp_tls_per_site =
  lmtp_tls_policy_maps =
  lmtp_tls_scert_verifydepth = 9
  lmtp_tls_secure_cert_match = nexthop
  lmtp_tls_security_level =
  lmtp_tls_session_cache_database =
  lmtp_tls_session_cache_timeout = 3600s
  lmtp_tls_verify_cert_match = hostname
  lmtp_use_tls = no
  lmtp_xforward_timeout = 300s
  local_command_shell =
  local_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  local_destination_concurrency_limit = 2
  local_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  local_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  local_destination_rate_delay = $default_destination_rate_delay
  local_destination_recipient_limit = 1
  local_header_rewrite_clients = permit_inet_interfaces
  local_initial_destination_concurrency = $initial_destination_concurrency
  local_recipient_maps = proxy:unix:passwd.byname $alias_maps
  local_transport = local:$myhostname
  luser_relay =
  mail_name = Postfix
  mail_owner = _postfix
  mail_release_date = 20080902
  mail_spool_directory = /var/mail
  mail_version = 2.5.5
  mailbox_command =
  mailbox_command_maps =
  mailbox_delivery_lock = flock, dotlock
  mailbox_size_limit = 0
  mailbox_transport = dovecot
  mailbox_transport_maps =
  mailq_path = /usr/bin/mailq
  manpage_directory = /usr/share/man
  maps_rbl_domains =
  maps_rbl_reject_code = 554
  masquerade_classes = envelope_sender, header_sender, header_recipient
  masquerade_domains =
  masquerade_exceptions =
  max_idle = 100s
  max_use = 100
  maximal_backoff_time = 4000s
  maximal_queue_lifetime = 5d
  message_reject_characters =
  message_size_limit = 209715200
  message_strip_characters =
  milter_command_timeout = 30s
  milter_connect_macros = j {daemon_name} v
  milter_connect_timeout = 30s
  milter_content_timeout = 300s
  milter_data_macros = i
  milter_default_action = tempfail
  milter_end_of_data_macros = i
  milter_end_of_header_macros = i
  milter_helo_macros = {tls_version} {cipher} {cipher_bits} {cert_subject} {cert_issuer}
  milter_macro_daemon_name = $myhostname
  milter_macro_v = $mail_name $mail_version
  milter_mail_macros = i {auth_type} {auth_authen} {auth_author} {mail_addr}
  milter_protocol = 2
  milter_rcpt_macros = i {rcpt_addr}
  milter_unknown_command_macros =
  mime_boundary_length_limit = 2048
  mime_header_checks = $header_checks
  mime_nesting_limit = 100
  minimal_backoff_time = 300s
  multi_recipient_bounce_reject_code = 550
  mydestination = $myhostname, localhost.$mydomain, localhost, jbillings.net, rebuildingtogetherliberty.org, speedofflight.net, billingsconstruction.com, kcscsports.net, rebuildingtogetherclaycounty.org, $mydomain
  mydomain = net
  mydomain_fallback = localhost
  myhostname = www.jbillings.net
  mynetworks = 127.0.0.0/8,192.168.2.0/24
  mynetworks_style = subnet
  myorigin = $myhostname
  nested_header_checks = $header_checks
  newaliases_path = /usr/bin/newaliases
  non_fqdn_reject_code = 504
  non_smtpd_milters =
  notify_classes = resource, software
  parent_domain_matches_subdomains = debug_peer_list,fast_flush_domains,mynetworks,permit_mx_backup_networks,qmqpd_a uthorized_clients,relay_domains,smtpd_access_maps
  permit_mx_backup_networks =
  pickup_service_name = pickup
  plaintext_reject_code = 450
  prepend_delivered_header = command, file, forward
  process_id_directory = pid
  propagate_unmatched_extensions = canonical, virtual
  proxy_interfaces =
  proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $sender_bcc_maps $recipient_bcc_maps $smtp_generic_maps $lmtp_generic_maps
  proxy_write_maps = $smtp_sasl_auth_cache_name $lmtp_sasl_auth_cache_name
  qmgr_clog_warn_time = 300s
  qmgr_fudge_factor = 100
  qmgr_message_active_limit = 20000
  qmgr_message_recipient_limit = 20000
  qmgr_message_recipient_minimum = 10
  qmqpd_authorized_clients =
  qmqpd_client_port_logging = no
  qmqpd_error_delay = 1s
  qmqpd_timeout = 300s
  queue_directory = /private/var/spool/postfix
  queue_file_attribute_count_limit = 100
  queue_minfree = 0
  queue_run_delay = 300s
  queue_service_name = qmgr
  rbl_reply_maps =
  readme_directory = /usr/share/doc/postfix
  receive_override_options =
  recipient_bcc_maps =
  recipient_canonical_classes = envelope_recipient, header_recipient
  recipient_delimiter = +
  reject_code = 554
  relay_clientcerts =
  relay_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  relay_destination_concurrency_limit = $default_destination_concurrency_limit
  relay_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  relay_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  relay_destination_rate_delay = $default_destination_rate_delay
  relay_destination_recipient_limit = $default_destination_recipient_limit
  relay_domains = $mydestination
  relay_domains_reject_code = 554
  relay_initial_destination_concurrency = $initial_destination_concurrency
  relay_recipient_maps =
  relay_transport = relay
  relayhost =
  relocated_maps =
  remote_header_rewrite_domain =
  resolve_null_domain = no
  resolve_numeric_domain = no
  rewrite_service_name = rewrite
  sample_directory = /usr/share/doc/postfix/examples
  send_cyrus_sasl_authzid = no
  sender_bcc_maps =
  sender_canonical_classes = envelope_sender, header_sender
  sender_canonical_maps =
  sender_dependent_relayhost_maps =
  sendmail_path = /usr/sbin/sendmail
  service_throttle_time = 60s
  setgid_group = _postdrop
  showq_service_name = showq
  smtp_bind_address6 =
  smtp_body_checks =
  smtp_cname_overrides_servername = no
  smtp_connect_timeout = 30s
  smtp_connection_cache_destinations =
  smtp_connection_cache_on_demand = yes
  smtp_connection_cache_time_limit = 2s
  smtp_connection_reuse_time_limit = 300s
  smtp_data_done_timeout = 600s
  smtp_data_init_timeout = 120s
  smtp_data_xfer_timeout = 180s
  smtp_defer_if_no_mx_address_found = no
  smtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  smtp_destination_concurrency_limit = $default_destination_concurrency_limit
  smtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  smtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  smtp_destination_rate_delay = $default_destination_rate_delay
  smtp_destination_recipient_limit = $default_destination_recipient_limit
  smtp_discard_ehlo_keyword_address_maps =
  smtp_discard_ehlo_keywords =
  smtp_enforce_tls = no
  smtp_fallback_relay = $fallback_relay
  smtp_generic_maps =
  smtp_header_checks =
  smtp_helo_name = $myhostname
  smtp_helo_timeout = 300s
  smtp_host_lookup = dns
  smtp_initial_destination_concurrency = $initial_destination_concurrency
  smtp_line_length_limit = 990
  smtp_mail_timeout = 300s
  smtp_mime_header_checks =
  smtp_mx_address_limit = 5
  smtp_mx_session_limit = 2
  smtp_nested_header_checks =
  smtp_pix_workaround_delay_time = 10s
  smtp_pix_workaround_maps =
  smtp_pix_workaround_threshold_time = 500s
  smtp_pix_workarounds = disable_esmtp,delay_dotcrlf
  smtp_quit_timeout = 300s
  smtp_quote_rfc821_envelope = yes
  smtp_rcpt_timeout = 300s
  smtp_rset_timeout = 20s
  smtp_sasl_auth_cache_name =
  smtp_sasl_auth_cache_time = 90d
  smtp_sasl_auth_soft_bounce = yes
  smtp_sasl_mechanism_filter =
  smtp_sasl_password_maps =
  smtp_sasl_path =
  smtp_sasl_security_options = noplaintext, noanonymous
  smtp_sasl_tls_security_options = $smtp_sasl_security_options
  smtp_sasl_tls_verified_security_options = $smtp_sasl_tls_security_options
  smtp_sasl_type = cyrus
  smtp_send_xforward_command = no
  smtp_sender_dependent_authentication = no
  smtp_starttls_timeout = 300s
  smtp_tls_CAfile =
  smtp_tls_CApath =
  smtp_tls_cert_file =
  smtp_tls_dcert_file =
  smtp_tls_dkey_file = $smtp_tls_dcert_file
  smtp_tls_enforce_peername = yes
  smtp_tls_exclude_ciphers =
  smtp_tls_fingerprint_cert_match =
  smtp_tls_fingerprint_digest = md5
  smtp_tls_key_file = $smtp_tls_cert_file
  smtp_tls_loglevel = 0
  smtp_tls_mandatory_ciphers = medium
  smtp_tls_mandatory_exclude_ciphers =
  smtp_tls_mandatory_protocols = SSLv3, TLSv1
  smtp_tls_note_starttls_offer = no
  smtp_tls_per_site =
  smtp_tls_policy_maps =
  smtp_tls_scert_verifydepth = 9
  smtp_tls_secure_cert_match = nexthop, dot-nexthop
  smtp_tls_security_level =
  smtp_tls_session_cache_database =
  smtp_tls_session_cache_timeout = 3600s
  smtp_tls_verify_cert_match = hostname
  smtp_use_tls = no
  smtp_xforward_timeout = 300s
  smtpd_authorized_verp_clients = $authorized_verp_clients
  smtpd_authorized_xclient_hosts =
  smtpd_authorized_xforward_hosts =
  smtpd_banner = $myhostname ESMTP $mail_name
  smtpd_client_connection_count_limit = 50
  smtpd_client_connection_rate_limit = 0
  smtpd_client_event_limit_exceptions = ${smtpd_client_connection_limit_exceptions:$mynetworks}
  smtpd_client_message_rate_limit = 0
  smtpd_client_new_tls_session_rate_limit = 0
  smtpd_client_port_logging = no
  smtpd_client_recipient_rate_limit = 0
  smtpd_client_restrictions = permit_mynetworks permit_sasl_authenticated reject_rbl_client zen.spamhaus.org permit
  smtpd_data_restrictions =
  smtpd_delay_open_until_valid_rcpt = yes
  smtpd_discard_ehlo_keyword_address_maps =
  smtpd_discard_ehlo_keywords =
  smtpd_end_of_data_restrictions =
  smtpd_enforce_tls = yes
  smtpd_error_sleep_time = 1s
  smtpd_etrn_restrictions =
  smtpd_expansion_filter = \t\40!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghi jklmnopqrstuvwxyz{|}~
  smtpd_forbidden_commands = CONNECT GET POST
  smtpd_hard_error_limit = 20
  smtpd_helo_required = yes
  smtpd_helo_restrictions = reject_invalid_helo_hostname reject_non_fqdn_helo_hostname
  smtpd_history_flush_threshold = 100
  smtpd_junk_command_limit = 100
  smtpd_milters =
  smtpd_noop_commands =
  smtpd_null_access_lookup_key = <>
  smtpd_peername_lookup = yes
  smtpd_policy_service_max_idle = 300s
  smtpd_policy_service_max_ttl = 1000s
  smtpd_policy_service_timeout = 100s
  smtpd_proxy_ehlo = $myhostname
  smtpd_proxy_filter =
  smtpd_proxy_timeout = 100s
  smtpd_pw_server_security_options = cram-md5
  smtpd_recipient_limit = 1000
  smtpd_recipient_overshoot_limit = 1000
  smtpd_recipient_restrictions = permit_sasl_authenticated permit_mynetworks  reject_unauth_destination check_policy_service unix:private/policy permit
  smtpd_reject_unlisted_recipient = yes
  smtpd_reject_unlisted_sender = no
  smtpd_restriction_classes =
  smtpd_sasl_auth_enable = yes
  smtpd_sasl_authenticated_header = no
  smtpd_sasl_exceptions_networks =
  smtpd_sasl_path = smtpd
  smtpd_sasl_security_options = noanonymous
  smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
  smtpd_sasl_type = cyrus
  smtpd_sender_login_maps =
  smtpd_sender_restrictions =
  smtpd_soft_error_limit = 10
  smtpd_starttls_timeout = 300s
  smtpd_timeout = 300s
  smtpd_tls_CAfile = /etc/certificates/server.jbillings.net.0614D66F5D64A8714C5BD87DB26F4D5999C16541 .chain.pem
  smtpd_tls_CApath =
  smtpd_tls_always_issue_session_ids = yes
  smtpd_tls_ask_ccert = no
  smtpd_tls_auth_only = no
  smtpd_tls_ccert_verifydepth = 9
  smtpd_tls_cert_file = /etc/certificates/server.jbillings.net.0614D66F5D64A8714C5BD87DB26F4D5999C16541 .cert.pem
  smtpd_tls_dcert_file =
  smtpd_tls_dh1024_param_file =
  smtpd_tls_dh512_param_file =
  smtpd_tls_dkey_file = $smtpd_tls_dcert_file
  smtpd_tls_exclude_ciphers = SSLv2, aNULL, ADH, eNULL
  smtpd_tls_fingerprint_digest = md5
  smtpd_tls_key_file = /etc/certificates/server.jbillings.net.0614D66F5D64A8714C5BD87DB26F4D5999C16541 .key.pem
  smtpd_tls_loglevel = 0
  smtpd_tls_mandatory_ciphers = medium
  smtpd_tls_mandatory_exclude_ciphers =
  smtpd_tls_mandatory_protocols = SSLv3, TLSv1
  smtpd_tls_received_header = no
  smtpd_tls_req_ccert = no
  smtpd_tls_security_level =
  smtpd_tls_session_cache_database =
  smtpd_tls_session_cache_timeout = 3600s
  smtpd_tls_wrappermode = no
  smtpd_use_pw_server = yes
  smtpd_use_tls = yes
  stale_lock_time = 500s
  stress =
  strict_mailbox_ownership = yes
  syslog_facility = mail
  syslog_name = postfix
  tls_daemon_random_bytes = 32
  tls_export_cipherlist = ALL:+RC4:@STRENGTH
  tls_high_cipherlist = ALL:!EXPORT:!LOW:!MEDIUM:+RC4:@STRENGTH
  tls_low_cipherlist = ALL:!EXPORT:+RC4:@STRENGTH
  tls_medium_cipherlist = ALL:!EXPORT:!LOW:+RC4:@STRENGTH
  tls_null_cipherlist = eNULL:!aNULL
  tls_random_bytes = 32
  tls_random_exchange_name = ${data_directory}/prng_exch
  tls_random_prng_update_period = 3600s
  tls_random_reseed_period = 3600s
  tls_random_source = dev:/dev/urandom
  trace_service_name = trace
  transport_maps =
  transport_retry_time = 60s
  trigger_timeout = 10s
  undisclosed_recipients_header = To: undisclosed-recipients:;
  unknown_address_reject_code = 450
  unknown_client_reject_code = 450
  unknown_hostname_reject_code = 450
  unknown_local_recipient_reject_code = 550
  unknown_relay_recipient_reject_code = 550
  unknown_virtual_alias_reject_code = 550
  unknown_virtual_mailbox_reject_code = 550
  unverified_recipient_reject_code = 450
  unverified_sender_reject_code = 450
  use_getpwnam_ext = yes
  use_od_delivery_path = no
  verp_delimiter_filter = -=+
  virtual_alias_domains = $virtual_alias_maps
  virtual_alias_expansion_limit = 1000
  virtual_alias_maps =
  virtual_alias_recursion_limit = 1000
  virtual_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  virtual_destination_concurrency_limit = $default_destination_concurrency_limit
  virtual_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  virtual_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  virtual_destination_rate_delay = $default_destination_rate_delay
  virtual_destination_recipient_limit = $default_destination_recipient_limit
  virtual_gid_maps =
  virtual_initial_destination_concurrency = $initial_destination_concurrency
  virtual_mailbox_base =
  virtual_mailbox_domains = $virtual_mailbox_maps
  virtual_mailbox_limit = 51200000
  virtual_mailbox_lock = fcntl, dotlock
  virtual_mailbox_maps =
  virtual_minimum_uid = 100
  virtual_transport = virtual
  virtual_uid_maps =
  jbillings:~ sysadmin$

• How can i tell if my iphone 4 has been hacked into?

  Here is the situation.....a friend of mine is in a bad marriage. She found out her husband bugged her laptop and her phone and is finding out all of her conversations. The other day, we were all at a buffet restaurant and he was sitting at the table with us, without thinking anything of it, I left my purse with my phone at the table while all but him went up to the bar. Later on that night, I was in the car with another friend and we were talking in detail about our friends situation. The next day my friend whom I was talking to in the car, checked her answering machine, and our conversation was on her machine. I checked my call log AND detailed billing from AT&T  thinking I may have butt dialed her house, but there is no record of me calling her house. The same with her, she as no record of calling her house and her home phone does not have caller ID. This guy is very tech savy and is the manager of 4 AT&T stores. Is it possible for him to have hacked into my phone and put some sort of bug in it? If this is possible, is it also possible for my phone to be able to record our conversation without a call being placed? If it is possible, how can I tell if my phone has been hacked?
  Thanks

  It would be extremely difficult for someone to be able to grab your iPhone out of your purse and hack into it without having a laptop computer with him with which to jailbreak the iPhone and time to work on it. I can't say it would be impossible, though. I'd suggest as a precaution you perform a Restore on your iPhone; if it restores successfully that would clear any jailbreak and remove any hack.
  http://support.apple.com/kb/ht1212
  Regards.

• Performa 6400 & Mac IIcx

  I have both a Performa 6400/200 and MacIntosh IIcx. Both I want to transfer the data from each to my G5.
  The Performa has the following ports:
  1. 25 pin scsi female connector.
  2. 8 pin din female connector (printer icon)
  3. 8 pin din female connector (modem icon)
  4. 6 pin phone or ethernet jack (not sure which).
  The Mac IIcx has the following ports:
  1. 25 pin scsi female connector.
  2. 8 pin din female connector (printer icon)
  3. 8 pin din female connector (modem icon)
  There is no modem in this IIcx.
  Can data be transferred through the scsi cable with a scsi to usb adapter? I'm hoping I can just access the hard drive some how in each of these old units (not simultaneously) as if they were external HD that shows up on my G5 monitor.
  Any suggestions would be greatly appreciated.
  Thanks.
  Gene

  Hi Gene,
  Could you confirm that this cable would work for what I want to do?
  That appears to be something that might work. However, the link to this product could possibly be even more interesting.
  Also, can't I just leave the HD in the 6400 so I can use its power supply and unplug the IDE cable from the 6400 and plug in the IDE/usb adapter?
  In principle, yes. Depending upon how the adapter is connected and powered, you may or may not encounter interference problems, though. It may be better remove the entire drive (or at least all cables connected to it) and use both the IDE interface and the power supply from the external device.
  Then once I have it hooked up, I assume it will show up on my G5 as another drive, right?
  Yes, that is the idea.
  Also, I'm hoping I can do this without hooking up a monitor on the 6400 since the 6400 HD will be now acting as an external HD to the G5, right?
  Yes.
  With regards to the IIcx, can I not access it the same way using a scsi to usb adapter of some kind?
  When the first iMac was introduced, there were USB-to-SCSI adapters. The question is whether these (if you can find one today) will work well at all (and with your G5). Someone else may be able to provide you with more information about this.
  If this won't work and assuming I have to connect using an 8pin din cable between the 6400 and the IIcx in their respective printer ports, would I have to have monitors on both units so I can see the file sharing software work or could I operate the whole thing from the 6400?
  You would, normally, need monitors on both units.
  Is the file sharing software part of the mac operating system or is that something I would also have to install? Could you elaborate on how I would do this?
  File sharing has been part of the Mac OS since System 7. It is not difficult. AppleTalk has to be on. Basically, you would enable file sharing on one of the computers. The other can then connect to the former computer (via the Chooser). The manuals and the built-in help system describe to do this.
  Good luck! Do not hesitate to post again if there are additional questions.
  Jan

• AV Connections on Performa 6400/200

  Hi,
  I have a Performa 6400/200 running OS 8.6 with 256MB of memory.
  The back of the computer has a set of RCA and S-Video connectors. Both input and output. The circuit board is identified as "Avid Technologies."
  Does anyone have any information on what is required to use the AV hardware? Can I connect a VCR and copy video to the hard drive?
  Thanks,
  Sy Bensky

  Your 6400 has the Apple Video System option installed, so if you do an advanced search of the Knowledge Base for it (select "Include content created prior to 1997"), you should be able to find some info about it. As I recall, it shipped with the Avid Cinema program, but the Apple Video Player program functions with it also. There was also an option for a TV tuner or FM tuner, allowing you to watch TV or listen to radio on your 6400. The Apple Video System was more of a high-tech toy at the time, but 10 years later - it's really low-tech. It was certainly never intended for high quality digitizing of analog video for full-screen display. The 603e/180 or 200 MHz processor and limited 1 MB of DRAM for onboard video support aren't capable of handling serious video work. For amusement purposes, you can connect a VCR and watch small-screen video and/or create and save small QuickTime video files.
  Incidentally, the maximum supported RAM in a 6400 is 136 MBs - 8 MBs soldered to the motherboard and a pair of 64 MB DIMMs in each of the two RAM slots.

• Have I been hacked??? "Stealth Mode connection attempt to UDP"

  My Mac Mini has been running very slowly lately. Sometimes it takes half a minute to switch between apps, and I mean simple apps like Mail and Safari and Appleworks, not Photoshop. Photoshop is a joke it runs so slow. So I've run Onyx SEVERAL times, restarted and cleared my PRam, and nothing is helping. I also noticed it seemed like my Mini was "running" a lot (the hard drive making a noise like it was up to something when I'm not doing anything). So I looked at the cable box and the Ethernet light was flashing softly, going along with the hard drive noise. Then I downloaded something called MenuMeters and it is showing that I'm receiving data constantly - it goes between about 300B/s to 1500B/s, and sometimes it shows I'm sending too. So I opened up the System Preferences and found out that "Network Time" was enabled in the Firewall preference pane. I unchecked that but my Mini is still receiving. (I'm not on any Ethernet network or anything either.) So I opened Advanced and found that the "Block UDP Traffic" box is not checked, though the other two "Enable Firewall Logging" and "Enable Stealth Mode" are checked. THEN I opened the log file and was shocked to see 1048 lines, mostly reading ""Stealth Mode connection attempt to UDP," although once in a while I saw a few that said "12190 Deny TCP." And that 1048 is just for yesterday and today. Is that normal??? Sometimes the "Stealth Mode connection" lines are single (I mean, not to a repeating number), but sometimes they repeat two, three, even five times to the same number.
  Have I been hacked? Is someone stealing our small business data? Sounds kind of ridiculous, but can't help and worry some. Or do I have a virus? I tried to google whether or not there are any Mac viruses out there, that might pertain to this, but couldn't figure out anything. What do I do? I'm not very computer savvy, other than running my apps, and don't anything about Terminal or things like that. Even as I type this MenuMeters is showing me I'm receiving SOMETHING. Yikes!
  Mini   Mac OS X (10.4.8)  

  You mention one of the applications you have been using is Appleworks - which is not supplied with Intel systems, only PPC Macs. This would tend to suggest that your mini is a G4 model. It would be helpful to know which model the system is, what software you have on it, how much free space you have on your hard drive, and what you typically use the system for.
  It's interesting that you note the system seems generally busy, which would go some way to explain why it may also seem rather slow, but you haven't mentioned whether you've run Activity Monitor to see what processes are active when the system seems to be active with some task that is not of your doing. If you haven't tried this yet, do so now - and let us know what processes the system shows as active when otherwise the system ought to be idle.
  To answer a few of your broad questions: When the system is connected to the internet, it's not unusual to see a certain amount of data through-putting the network connection, but in most instances this would be in the region of 100-200B/s, with occasional, brief, spikes upwards of that. In the absence of a local router that level of data is likely to be higher, since basically your Mac is managing your internet connection and maintaining a public IP address assigned by your service provider. In a system with a router, the router handles this traffic so the resultant volume of data the Mac sees would be less.
  The fact you see entries in the log of the sort you describe is not necessarily an indicator of a problem. It may suggest that the system is being probed, which as Boece has said is not at all uncommon for a system with a public IP number - and is indeed why it's most common to find systems being used 'behind' a router. The router takes the public IP number, and so systems behind it are given internal addresses by the router which are not visible to the outside world. The Router then performs something called Network Address Translation (NAT) which converts internal and public addresses as needed to ensure the computer can communicate with the internet while still staying 'invisible'.
  In your position, I would look to add a basic router between your Mac and your cable/DSL modem because a hardware firewall is generally more effective than a software firewall, and NAT will keep your system clear of most potential hacking risks.
  As for the potential for a virus - this is a bit of a thorny subject because most will (rightly) say that MacOS is not the target of any known virus that exists in the wild. Unfortunately, that doesn't mean that it will remain that way, or that it's impossible to create malware that can infect or impact Mac systems. A good line of defense can be obtained by downloading and installing ClamXav (http://www.clamxav.com/) and setting it to examine vulnerable spots such as the desktop where files are typically downloaded or your mail folders, and using it to scan the system. Generally speaking, unlike antivirus products for Windows, this software does not consume copious amounts of CPU time (it grabs between 1 and 5% on my 1.25 G4 mini while in the background) so it's worth having around.
  You also mention running OnyX several times - this is not a good thing. OnyX, like the other utilities of this type, is a useful tool in resolving performance issues, but if you find that it doesn't work when you use it once, it indicates the problem is not something that OnyX can resolve. Running it multiple times doesn't necessarily do any harm, but it does mean that macOS is continually having to build new cache files etc, which makes the system run very badly!
  So....
  (1) tell us about your system, the software on it and what you use it for.
  (2) how much free space is on your hard drive.
  (3) run Activity Monitor and tell us what it shows when the system seems to be busy doing it's own thing.
  (4) download ClamXav and run it as described.
  (5) get an inexpensive router and insert that into your system as described (we can help explain how to set everything up once you've got it if you need assistance).

• I have something attached to firefox called vostaren search. is that you? or have i been hacked?

  I downloaded firefox. Later I tried to download open office, using firefox, then found something called vostaren search when I opened the firefox icon, so I removed firefox entirely from my computer, then waited a few days then re-downloaded firefox. Still have the vostaren attached to firefox. Iis that a legitimate part of firefox. or have I been hacked? Is there now a cookie that will cause firefox to direct me immediately to vostaren when I open firefox?

  hi friendmozilla, no this is no legitimate part of firefox and sound like an issue with adware that might have been bundled with a download. in order to resolve that please perform all these steps:
  # [[Reset Firefox – easily fix most problems|reset firefox]] (this will keep your bookmarks and passwords)
  # afterwards go to the firefox menu ≡ > addons > extensions and in case there are still extensions listed there, disable them.
  # finally run a full scan of your system with different security tools like the [http://www.malwarebytes.org/products/malwarebytes_free free version of malwarebytes] and [http://www.bleepingcomputer.com/download/adwcleaner/ adwcleaner] to make sure that adware isn't present in other places of your system as well.
  [[Troubleshoot Firefox issues caused by malware]]

• Hi Apple support, my name is Derek Turner and I have been hacked through a friend's email account and I wish to know if 1. I can clean my email list of names and account with software and 2. How is it possible to delete emails that are still coming back

  Hi! My name is Derek Turner and I have been hacked through a friend's email message to me which I opened unsuspecting any danger.  Initially, he sent me an 'attention' or warning email with a link which I tried to open but it could not be opened, so I left it not knowing what it was all about at the time.  Later, I received another email from him (probably the hacker) and opened a 'not very pleasant' web site.  It did not twig with me at the time as I am a bit new to this type of thing but when I mentioned it to my wife she immediately said that I had been 'hacked'.  By this time it was too late, and it infected all my email addresses!  I would be grateful if you may know if there is software that I can use to clean up my email account and if there is anything for iPad minis that can prevent this happening in future? (Malware, Firewall?).  I am also getting emails back that relate to the hacker and I cannot 'delete' them from my iPad, only on my PC!  Any suggestions?
  Thank you for your time regarding this matter,
  Derek Turner,( a very new iPad mini user!)

  Hi,
  I don't think that can be solved by any advice the regular posters could post here.
  I would go back to Apple and explain the situation (again).
  I would also consider closing the account (Apple rarely seem to do this as accounts are never deleted but just closed).
  I understand this may cause issues for things purchased in iTunes and the App Store which my include Restoring the OS at some point.
  8:20 pm      Tuesday; September 16, 2014
  ​  iMac 2.5Ghz i5 2011 (Mavericks 10.9)
   G4/1GhzDual MDD (Leopard 10.5.8)
   MacBookPro 2Gb (Snow Leopard 10.6.8)
   Mac OS X (10.6.8),
   Couple of iPhones and an iPad

• My apple ID has been hacked so I had to create a new account, how can I get my old account back??

  My apple ID has been hacked so I had to create a new account, how can I get my old account back?? My iPhone and iPad are linked to the account i lost

  freedone wrote:
  Great! Yes mysterious is best way to describe internet eh lol. It could be that I have asked other questions that had absoulutely no relevance to the current q,  onto previous questions. So I am going to look thru them all..
  I did say m i s c h i e v o u s  didn't I? Mysterious it is though too.
  Regarding the latter, I have some tips for searching... (WARNING: I don not have a high opinion of the Forum Search abilities)
  Discussion Search
  https://discussions.apple.com/search.jspa?type=discussion&q=Great!&author=%2Fpeo ple%2F946207&sort=updatedAsc
  The above is what is called "Space Search"
  I used the first word of you above post " Great! " with a couple of filters applied - found this thread and one other
  If you can think of any term you may have used, it may be of some benefit to use this search
  ELSE
  I am VERY fond of Google "Site Search" for all of Apple.Com and its subdomains...
  a mere search for your username with quotes no brackets [ "freedone" ] yielded 313 results - but there IS another username "freedoneb" that may take up some of that real estate
  https://www.google.com/?gws_rd=ssl#safe=off&q=%22freedone%22+site:discussions.ap ple.com