SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Add newo

    Add plugin or client for SPX encryption for Post Office Client
    -GroupWise 18
    - Webmail Outlook
    - Lotus Domino
    - GroupWise Web Client

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Option to present TLS certificate for outgoing email

    Currently the TLS certificate seems to only be used for incoming email. Many TLS partners have asked whether it would be possible to present the TLS certificate also for outgoing communication, which is more secure.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Reject Quarantine Messages Choice

    Add option for quarantine emails to be rejected (add in drop down: View, Delete, Release).
    This will also inform the sender that his email was rejected if for example the antivirus engine failed to perform a security scan.

    9 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. DNS Forwarders - allow a separate selection for Mail Protection

    If you've seen my DNS best practice (https://community.sophos.com/products/unified-threat-management/f/management-networking-logging-and-reporting/32566/solved-dns-best-practice/109152#109152) post, you know that it recommends NOT using the DNS servers of your ISP and using Google or OpenDNS. The reason for this is that many providers hijack DNS, breaking rDNS.

    When I started that post over eight (!) years ago, there were very few Content Delivery Networks (CDNs). Today, they abound, and that's a problem that may well trump thr rDNS problem. As Alexander Busch described this situati in a post near the end of the DNS Best Practice thread, "Essentially, it is about the provider operating a large…

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Make it possible to disable IPv6 for SMTP

    If ipv6 is on, than its also on für smtp. But we get no static IPv6 by Deutsche Telekom AG without a expensive contract; but we get a static IPv4. With no static ipv6 we cant configure the AAAA-Record / PTR /RDNS . So our ipv6-Mails will classified as SPAM because we cant disallow to send mails via ipv6. But we will need ipv6 in the future for VPN-connections.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Allow custom exim configuration

    Allow custom exim.conf configuration to be added. Exim has alot of flexibility and features that are not available through the web interface, so it would be nice to be able to add your own custom config.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Allow specific senders for specific recipients

    Allow specific senders to be white-listed for specific recipients

    So for example - Whitelist 123@hotmail.com but only for 333@gmail.com, but keep it blacklisted for everyone else.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Support for Multiple Domains for DKIM on SEA

    Feature Request - Support for multiple domains for DKIM on Email Appliances

    We have two email domains that send through our clustered email appliances and want to setup DKIM for both domains, however currently the email appliances only support DKIM for a single domain.

    We would like the ability to enter more than one selector and private key within the DKIM settings.

    12 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. POP3 - Autoreply or Autoresponder when mail contain blocked extension

    The UTM doesn't have an option to send automatically e-mails back to sender if there mails where blocked cause of extensions like .doc or .xls and so on in POP3 Proxy.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Adding option for exception allowing unscannable mail

    It would sometimes very helpful to have the possibility to create an exception for allowing mail with not scannable attachments while having the global option quarantine unscannable and encrypted content enabled.

    12 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Encoded content filter on headers

    Hi,

    we received a phishing attempt in which an internal and effective email address appear as sender. After some analysis we found in the message header that sender and subject were encoded on UTF-8 (Base64).

    Here the modified header as example:


    Received: from hide (hide) by hide
    (hide) with hide (TLS) id hide via hide
    Transport; Wed, 10 May 2017 23:45:21 +0200
    Received: from hide (hide) by hide
    (hide) with hide (TLS) id hide; Wed, 10 May
    2017 23:45:21 +0200
    Received: from hide (hide) by hide
    (hide) with hider (TLS) id hide
    Transport; Wed, 10 May 2017 23:45:21 +0200
    X-Virus-Scanned:…

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. smtp: change authenticated smtp proxy authentication flow

    UTM first verifies username/password, and then checks if the user is allowed to use the authenticated smtp proxy.
    This allows a botnet to do a DoS attack, by simply giving wrong passwords for any AD account -> sophos checks all passwords, causing the account to become lockedout on the AD (toomanyfailedpasswords)

    We would like UTM to first check if the user is allowed to use the auth smtp proxy AT ALL, then further authentication would in most cases not be required. (reducing the number of failed logons on our AD servers considerably)

    This is how…

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Fingerprinting Spam

    A development of spam methode is Fingerprinting Spam. Would be nice to have this feature available on Sophos devices. I was advised to raise a feature request by Sophos.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. DMARC reporting

    I would like to have the UTM generating reports by grabbing the emails sent as aggragate reports so you would not have to setup agari or such

    13 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Spam Digest and out of office reply

    If users in absence receive e-mail which will be blocked / quarantined by spam engine, sender will not informed about the absence by out of office reply since no incoming e-Mail will trigger the send out of the reply. Would be great to have a solution for that issue.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Digest support for multiple alias's

    if an active directory user has an email account which has multiple aliases such as jsmith@domain.com, with aliases of johnsmith@domain.com, john.smith@domain.com, jsmith@domain2.com

    if each of the above emails receives an email which goes into quarantine then the user will receive 4 separate emails each with its own list of quarantined emails.

    but when the users logins into the quarantine web portal with their windows domain credentials all quarantined emails sit together.

    Sophos need to be able to better handle the use of aliases and send digest emails based on the email account not the email address

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. More detailed Mail Exception Configuration

    Allow to configure exceptions for extension blocking for single extensions.

    Actually it is only possible to create an exception and disable extension blocking at all. For special recipients it would be helpful to allow for example exe-attachments, but still block all other extensions.

    Furthermore it should be possible to create exceptions and combine sender AND recipient address. Actually it is only possible to filter for sender OR recipient address.

    19 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Allow logging of anti-spam feature results without blocking

    Currently, if I choose an anti-spam feature like 'Strict RDNS', I immediately block any sender that has not configured FCrDNS. I would like to be able to see 'RDNS invalid' in the log without that causing a block. Most spams probably would be blocked by something else, but it would be much easier to find false-positives and either inform the offending domain or make an exception for it.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Outlook 2016 support for the Outlook Add-in

    Provide support for newest version of Outlook 2016.

    69 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    14 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Outlook add-in for Email Protection

    Outlook add-in so users can add senders to their blacklist on the local XG. (somebody has previously suggested an add-in for reporting spam to Sophos, however this would be a more immediate solution so the users are confident they won't see that spam item again)

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.