How Autoresponders and Email Forwarding make you an Accidental Spammer.

Spam is bad. It ruins the internet experience and is a major reason people hate email as much as most people do. Google has become very good at filtering spam, but it’s not perfect. But did you know, that by enabling certain features in your email, you can become a spammer without ever realizing it? Let’s look at a couple of common ways this can happen.

Before we get started though, a disclaimer: most of the problems outlined can be resolved with a proper configuration of the mail servers involved. We’re taking a look at some worst case scenarios that we have seen happen. YMMV.


“This is Bob’s email. He’s not here because he’s off in Hawaii soaking up the sun. He’ll be back in a week.”

Ah yes, the Answering Machine of email. Autoresponders are used for everything from vacation notices to verification of mail reciption, i.e. “Thanks for your mail, someone will get back to you in 24 hours”. How does the use of such features turn one into a spammer? Well, it’s quite simple.

Many autoresponders have the habit of including the sent email in the response. So, if a spammer hits “” with a piece of spam, and the from: address is forged (they’re always forged) with something like “”. Then, responds with his typical “This is Bob’s email…” message, and right there below it, is the spam message for pharmaceuticals or hot russian babes or whatever. Where does this response get sent? It gets sent to

The result is that a spammer sent email to, which forwarded the spam to Even if you don’t include the content of the original mail in the autoresponse, STILL gets Bob’s automated response. Now Bob is sending unsolicted mail, whether it contain a spammy message or not. Bob, you spamming jerk.

But wait, there’s more. What if get’s an email from, and they both have an autoresponder set up. Yep, you guessed it- email wars! Both of their mailboxes fill up until they break, and now they don’t get email from anybody. Granted, many mail servers have protections for things like this, but many simply don’t.

The solution? Simple. Talk to your mail admin about it and make sure that the above problems can’t happen. If you’re not sure, then don’t use autoresponders. They’re a great idea that can turn out badly.

Email Forwarding

What about forwarding your email? It seems like a great solution: You have your own domain name, but you use Gmail or or some other mail provider, and don’t want to complicate your life by having to check yet another email address. And right there in cPanel is the Email Forwarder. Oh, it’s so simple- just send all email from to bobsuruncle@somemail.provider

And now, Bob, you’re a spammer. Why? Simple. When gets a piece of spam, what’s the first thing he does with it? He forwards it. He SENDS the spam to bobsuruncle@… and now has a reputation for sending junk mail, and it gets blocked. Now the mail forwarding stops working because everyone knows that Bob’s a spammer and so they block him.

The solution: Don’t Forward Emails. Ever. Instead, most online mail services have a POP or IMAP retrieval option. So, you create as a POP account, and have gmail or whatever check that email periodically. If that isn’t fast enough for you, then you’re stuck checking two email boxes. Live with it. Because forwarding mail, especially for business critical mail accounts, is just begging for trouble.

“But I’ve been forwarding email for years!” Well, I hate to break it to you, but you’ve been lucky. Your luck will run out.


A great way to be a spammer is to let a spammer use your email account to send spam. All you have to do is use a password that they already know. They have giant lists of known passwords, and they know how to use them. They’ll try to login to your email address enough times and get in, and then start sending spam. If “Fluffy123” is your email password, and you’ve been using it for years, by all means, change it. Get yourself a good password (and no, Fluffy1234 does not count). If you’re using cPanel, make sure your cPanel main account password is good too, because it can be used to authenticate any email address on the account.

There’s other ways you can become a spammer. Having a website that contains vulnerabilities (old versions of WordPress for example) is a great way to get your website hacked, and be used for spam. But that’s another article.

Questions? Comments? Leave them below 🙂

Goodbye FileZilla (Or, how to solve ENETUNREACH – Network unreachable)

FileZilla is an excellent bit of software that I’ve been using (and recommending) for many years. Today, that changed.

The Problem: ENETUNREACH – Network unreachable

A few months ago at the web host I work for, we started seeing problems with folks who were using FileZilla. Being on a slow network connection at the time, I’d neglected to upgrade my FileZilla installation from 3.10.x to the current 3.12.x. I could never duplicate the problem, and I figured it was likely a bug in the newer version of FileZilla.

Today I needed to do a task that required FTP on an older server, and when I fired up FileZilla, it nagged me to upgrade. Being on a fast connection now, I upgraded. I immediately regretted this. Instead of being greeted with an FTP session, I tried to log in and got:

Error:	The data connection could not be established: ENETUNREACH - Network unreachable

Error: Connection timed out after 20 seconds of inactivity Error: Failed to retrieve directory listing

Wait- what? So I tested it from the command line. It worked. Could it be that the update is broken this badly? A quick Google search for “Error: The data connection could not be established: ENETUNREACH” (with quotes) brought me to This Thread on FileZilla’s forum.

As I read through it, I recognized that the folks posting there were having the same problem I did. Rolling back to an earlier version of the program worked, but the latest installation version did not, and it produced “Error: The data connection could not be established: ENETUNREACH – Network unreachable”.

It Gets Worse

I’m not normally a judgmental person regarding software anTake a hike, eh!d developers, but “botg” (the creator of FileZilla and curator of the forum) was nothing but rude and downright combative about the problem. It seems he’s more interested in blaming firewall software than in making his software work properly. Perhaps he’s right- I’m not an FTP expert, and he apparently is. He does have some good points about Kaspersky’s Firewall (which I have disabled). But that does not make his approach to the problem a correct one. Clearly he doesn’t intend to fix it.

The Easy Fix

I’ve switched to WinSCP, and it worked immediately and even imported my FileZilla connection data which was quite handy. Perhaps you’ll want to do the same. Hopefully the FileZilla Devs will get their head on straight and manage to work around the problem like everyone else has. It’s a shame to see a good project go sideways like this.

Top 5 Chrome Extensions for Techs and Web Geeks

At my Day Job, I work in the web hosting industry. But really, if you do any amount of work daily online and deal with domain names and web development, you’re going to want some browser extensions to make things easier on yourself. Here are my top 5 chrome extensions.



The first step for making life easier is using a password manager. I personally use LastPass, and it works well for its intended use. The only trouble I’ve had with it (or any password manager) is that sometimes it auto-fills where I don’t want it to, and some web software (WHMCS for example) automatically saves whatever is entered. So, I turn auto fill off and that solves the problem.


Adblock Plus

Adblock Plus Options

Uncheck “Allow some non-intrustive advertising”

For me, Adblock Plus is kind of a no brainer. I hate ads. They slow down my browsing (especially on meager 1.5mbps DSL) and they are an attack vector I can do without. Trouble is, AdBlock Plus now allows some ads through from companies that have paid them to do so. Yeah, they sold out just a little, but everyone has to make a living, right? Thankfully there’s an easy way to disable this “feature”. Just right click on the ABP icon in Chrome, and click on Options. Then in the menu below, uncheck “Allow some non-intrusive advertising”. Done!  Now I get the benefits of full ad blocking.



Chrome makes it impossible to copy simply the hostname out of the Omnibar (the combined search/address bar). If you want just “” it’ll copy “” no matter what you do. Enter HostCopy. With HostCopy all you have to do is click the “hc” icon in Chrome and it copies the bare hostname (including www. if it is in the address) to the clipboard. It’s a great time saver!



VirtualHosts Chrome Extension

Type in the name of the host you want to view, then click “Enable”

VirtualHosts is a really neat extension. Specify the VirtualHost that you want to request in the http header, and then enter the IP address that the site resites on. It automatically resolves it and shows you the site. This is very cool because it saves you from having to make a hosts file entry that essentially does the same thing (just through DNS instead of through the http header). I use this a lot to view sites that don’t have DNS pointing yet. It’s a more obscure extension, but totally worth inclusion just because of how useful it is.

Revolver Tabs

Revolver Tabs Options

Revolver Tabs Options

Have you ever needed to monitor several websites simultaneously, but don’t have enough monitors? Revolver Tabs to the rescue! Open up each site in a tab, and Revolver Tabs will rotate through each tab on a schedule. You can specify the number of seconds between tab switches, force a reload on each rotation, and specify which sites not to include in the rotation. You can also have it stop rotating while you’re working on something. This is useful for keeping an eye on your email, Twitter feed, Facebook, and the likes, and then stopping to answer someone, then having it keep moving.


Omnibox Timer

OmniBox Timer Options

OmniBox Timer Options

This list would be incomplete if I didn’t show you a really neat Timer extension that I found called Omnibox Timer. Once installed, just type “tm” in the Omnibox, and then “15m break” and in 15 minutes, it notifies you that your break is over. It’s great for any task and helps you keep track of time, and is just so easy to use.

It even has a neat “Text To Speech” option that talks to you when your timer is up.



In Conclusion

These are some of the most useful Chrome extensions I’ve found. Do you have a favorite you’d like to add? Please use the commens below, or tweet me at @realgeocrasher and I’ll see about getting it added to the list. Enjoy!