Sophos Email security product should provide detailed report of processes emails including number and type of attachments per email users (in & out both).

So that we can understand how many users getting what type of attachments like
compressed
encrypted
Macro enable
pdf
etc..

There should be session based login into Sophos email security appliance Web GUI to avoid misuse of admin credential or unauthorized configuration change.

Means after a fixed interval of inactivity over Web GUI, login session should be expired.

Offering some sort of image compression feature, similar to Bandwidth Hero (image re-encoding, convert to grayscale, etc) in order to serve in an efficient way mobile or with low performance connection clients.

It would be nice to be able to create a report on users clicked and no. of hits based on a local site list tags. Currently, you can only create reports based on categories but you are unable to create custom categories. The tags was created because of this but then reporting on them isn't available. Some customers wants to create their own "non-business" related sites and monitor + report on them so this feature would definitely be useful.

Please add Adobe Cloud to the web application controls so that we can allow certain levels of access to adobe cloud without allowing uploading.. Similar to what has been done with Google Drive and One Drive.

Hi Team,

as an extension, it would be highly useful to implement an option for adding additional RBLs in Webappliances (for example URLHAUS -> urlhaus(DOT)abuse(DOT)ch ).

Thanks for considering and
kind regards,
Stefan

(this feature request was brought based on customers support case #9415978)

When using SSL-Inspection, it should be possible to deaktivate outdated TLS-versions like TLSv1.0 / 1.1.
It is recommended to disable SSLv3/ TLSv1.0 / 1.1 in the browser settings. This setting is useless, however, as the SWA always uses SSLv1.2 in the direction of the client.
So it can happen that a website with TLSv1.0 is requested, which is transferred to the client, on which TLSv1.0 is deactivated, with TLSv1.2.
That's a security problem.

Would be very helpful if you were able to display HTML content as part of the encrypted email and not just basic text. Same applies here to the reformatting of the email signature.

It should be possible to enable the "encrypt" button by default, so that it is not necessary to turn it on for every single email that one need to send encrypted (which is the majority).

The cloud web gateway needs to have an import function for block/allow lists of sites. Migrating to this platform is difficult when you have to manually enter every single blocekd or allowed site that you are migrating from another platform.

Hello Team,

We have the partner here requesting to have the helpdesk role in web appliance to manually synchronize the AD. This will allow the customer to no need to call the partner just to request to manually synchronize the AD if there are changes done on AD. For your assistance please. Thank You.

Hello Team,

We have customer here requesting to to have option to change the interval for the default synch time of AD to Web appliance. Customer advise that they need to have shortened AD synch interval as when they do changes on AD, it takes time for the synchronization to take effect. Partner is aware that he can do the manual synchronization but he said that customer needs to contact him just to do the manual synchronization. For your assistance please. Thank You

Email Appliance - Modify/Delete Header "Received from" showing local hostname and its local IP
sample header:
Received: from (local hostname) (unknown [local IP]) by mail.customer.domain (Sophos Email Appliance) with ESMTP id DDBB55220751_D330E57F for <external email eg. gmail>; Sat, 20 Jul 2019 12:51:35 +0000 (GMT)

Email Gateway Encryption needs some enhancements.
1. Option to disable multiple languages when users receive encrypted emails.
2. Sophos uses Echoworx for encryption but doesn't utilize the web portal. Giving the ability to use the web portal for recipients to send back a message encrypted would be great and it will be secure.

The "Blocked Sites" report indicates HTTP errors as a "block" in the report. Certain server codes like 500 Internal Server Error, should not be included on the report or shown as an "error" rather than a "block" event. This falsely leads you to believe policy is actively blocking the URL.

Need to have the ability to for time of click block list. They have the ability to allow time of click websites. No idea why there is not the option to block time of click sites that we know are bad.

Need to have the ability to for time of click block list. They have the ability to allow time of click websites. No idea why there is not the option to block time of click sites that we know are bad.

It would be useful to highlight banners with a choice of colours for background and text to catch a users attention.

Hello Team,

We have a customer requesting to have schedule automatic update for each cluster on email appliance. For your assistance please. Thank You.

Hello,

Please allow White-listing\Blacklisting of Email by Subject Line and\or Keyword.

Our HR gets emails from personal emails address all of the time for users replying to job postings. As these emails come from their personal email address @aol.com @gmail.com it in not feasible to white-list all these personal address. All the address however have "application" in the subject line. If we were able to white list emails with "application" keyword in the subject this would greatly increase our HR departments ability to get and analyze these emails instead of having to release them from quarantine every day.