SG UTM
Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.
-
PGP-Keyserver check when sending mail
Now the ASG only checks the PGP-Keyserver when receiving a email a unknown PGP-Key. It would be nice if the ASG also checks for public keys when sending a email.
6 votes -
Mail Protection: Usage of "and" / "or"
Hi,
It is there for "Intrusion Prevention" (AND-Usage possible), but not under Mail Security -> SMTP -> Exceptions.
5 votes -
Disable every possibility for a user to get a blocked file out of the Quarantine
After some fumbling around with the quarantine manager (user-portal) i figured out that there is a way to get e EXE file which is blocked (in Mailsec. - SMTP - Antivirus - Blocked file ext.) saved as an .eml-file. That's not nice because it overrides our security-policy. No user, except an administrator should be allowed to save/export/release a blocked file when it matches as an executable.
3 votes -
SMTP Proxy: hostnames on different links
Add the ability to have individual hostnames for the SMTP proxy if you have multiple external links. This would be for links to multiple ISP's with different MX records for each links for failover purposes for example.
4 votes -
Mail Encryption: PGP - Download Public-Postmaster-Key
We need a solution to download an Public-Postmaster-Key.
Only one PGP-Public-Key for the complete Company.4 votes -
Mail Security: Use Phising Filter to stop Malicous Links
The Phising Filter in the mail security already filters URL's in mail for known phising servers. Please also add the possibility to filter more URL categories - at least "Malicious Sites" and "Spyware/Adware". Or the nonplusultra feature would be, if we could filter mails against any of the Smartfilter XL categories (as P2P and others).
The rising number of mails linked to malicious sites will make this feature very desireable.
4 votes -
Mail Protection: Compress and Convert files
We often have a situation, that our customers send us mails with BMS-files attached instead of using PNG or GIF.
I want to have an option, that I can define, which attachments can be converted from BMP to PNG or GIF. Maybe this can be combined with a ruleset so that I also can define, that a LOG or TXT-Attachment can be zipped, if it is greater than a limited file size.
This feature will save a lot of space on our mail-server and also on our POP3-clients.3 votes -
Ability to manipulate E-Mails
I would appreciate it to have the ability to manipulate E-Mails like rewriting envelope senders/recipients, some functions to set conditions and the corresponding actions, something like a granular DLP on the gateway itself.
2 votes -
MailSecurity: Test Expression Filters Button
It would be nice to have a "test function" for Expression Filter. The admin should enter the expression and the body of message. Clicking on a "test" button, Astaro should check if the expression matches or not.
6 votes -
MailSecurity: Require encryption/signature
Using a special marker mail should be disallowed if encryption/signature are not possible.
This should result in an NDR - "mail not send - encryption not possible"11 votes -
Mail Protection: Multidrop POP3 Support
Some isp's offer multidrop pop3 accounts. Basically one acount downloads all the messages from the pop3 server
2 votes -
Mail Security: Increase Database Retention for SMTP to 1 Year
Current SMTP database log only allows 30 days retention. Many organizations will have a one-year retention policy.
8 votes -
Mail Security: Separate Incoming and Outgoing Extension Blocking
To prevent Intellectual Property Data-Loss, it would be much better,
if there are 2 separate Filter Lists - one for Incoming and one for Outgoing Extension Blocking.
Via Extension Blocking we want to prevent, that e.g. DWG-File Attachments are sent to customers by the Engineering department without approval.
After approval, the secretary should be able to release the outgoing blocked Mail.8 votes -
Stricter Control over Relaying Allowances
Currently Email Relay checks for allowed users and Host based, in both cases the user name or IP address can be spoofed or hijacked by a spambot, it would be great to have more granular checks such as that the user allowed to relay should send with the same account and as well limit maximum number of emails per sender.
2 votes -
Mail Security: Email encryption - prevent void Certificates
Currently if a user is enabled for mail encryption and there is an existing certificate it will be used - there's no check if it's still valid (date).
PLEASE add a check that expired certificates are not longer used!
regards
10 votes -
Mail Security: Set Admin on Per-Domain Basis
It would be nice if it was possible to name an administrator for a domain and have the Mail Manager in Mail Security show quarantine and mail activity just to/from addresses in an individual domain
20 votes -
Prefetch for POP3-Accounts
Admin should be able to add/manage POP3 account for prefetch. Login in to the enduser portal is cumbersome as password of all users must be obtained first.
2 votes -
Mail Security: Configuration Changes Based on Reporting
The Quarantine Report should provide a 3rd option (besides release & whitelist), namely whitelist domain. This would trim the size of the user's whitelist considerably and cut down on false positives from the same domain.
2 votes -
Notifications: SMTP Host Monitoring
It should be possible to constantly monitor the status of the SMTP host that gets the mails after they were filtered by the Astaro's SMTP proxy. Is it pingable, is port 25 open? If not, please let my Astaro send me an email over another relay so I get informed that there is a problem and can do something about it.
3 votes -
Mail Security: Adjustable Max Queue Time
It would be nice if you through the web interface, can change how much time a mail should be stored in the firewall before it reaches the bounce.
So we have a server that went down on 29/12 but first came up again on 4 / 1, there are now some lost mails, because Astaro V7, only save the mails in 48 hours, and I can not find a way to change this?
11 votes
- Don't see your idea?