SG UTM
Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.
-
In Anti-Spam, Expression-check everything after DATA or include From
Currently, only the Subject field and the content of the email is checked. Well before V8, maybe in V6, we could add the email address of a departed employee to 'Expressions' to force emails to that person into quarantine.
In most organizations, emails within the organization won't transit the SMTP Proxy. An additional benefit would be that adding the domain would prevent outside emailers from spoofing an internal user in the From field. There is otherwise no mechanism to catch something like the following example that demonstrates a spoof of the company president ordering the treasurer to wire money:
telnet…
102 votes -
Mail Manager: Option to clear all filter checkboxes
Often i quicly wants to see for example all emails that have been rejected as SPAM, or by file filter or some other reason.
Now i have to manually clear all the check boxes first, and then enable only the one or two i need to show the desired result.
It would be very nice with a button, that simply cleared alle the boxes with one click!2 votes -
Mail Protection: Non-delivery report for blocked incoming messages
If incoming Mails are blocked because of the file-extension,
the external Users should get a Non-delivery report.21 votes -
Add DBL Check in Mail Protection
I suggest you should add support for DBL check on SMTP Antispam Features.
4 votes -
Redirect Quarantine Reports to other mailadress
possibility to redirect quarantine reports for e.g. ticketing system to administrator (to not create tickets for quarantine reports)
25 votes -
Mail Security: Quarantine Report n-times
Instead of the actual crypto locker problems we block all office mime type mails and need a feature to send a quarantine report more often to users
7 votes -
Block TLDs in Email Filter
Would like to be able to block all emails with senders from specific TLDs. Eg. .win or @*.win
9 votes -
Managing black list of local Sophos Email Security via Microsoft Outlook Add-In
Sophos Email Protection: Sophos already offers an MS Outlook add-in which allows the users to mark emails as junk mails. When users marks an emails as junk, an email is sent to Sophos Labs, gets analyzed and sometimes the sender is added to a global black list.
We would like to have another option when using this add-in. Whenever one of our users marks an email as junk, we want the sender added to the black list of our locally installed Sophos Email Security, not sent to Sophos Labs.
Other solutions like SonicWall Email Security offer this functionality already.Right…
65 votes -
Adjustable response to SPF Records with ~all
We get phishing mail with faked sender!
Examples:mastercard.com text = "v=spf1 include:spf.protection.outlook.com
include:deliverygateways.masercard.com include:external.mastercard.com include:ma.mastercard.com ~all"paypal.com text = "v=spf1 include:pp.spf.paypal.com include:3ph1.spf.paypal.com
include 3ph2.spf.paypal.com include:3ph3.spf.paypal.com
include:3ph4.spf.paypal.com nclude:c.spf.ebay.com ~all"The problem with this is ~all
The UTM marks the mail somewhere in the header and forwards it.
This is not good!It would be better if you could adjust the response to such a mail:
reject this mail
accept this mail
treat this mail as SPAM (marked as SPAM)It could thus enable a lot more control over such mails!
12 votes -
Send notification mail for every smtp quarantaine mail (blocked extension etc)
It would be nice to have the ability to activate a report to the internal receiver of an e-mail when his message is blocked (quarantained) because it contains a blocked extension (doc, xls, zip and so on)
5 votes -
discover if ,doc attached file contain macro
i'd like to know if is possible analyzer doc file attached to an email and discover if it contain macro and if has it put the message in quarantine
36 votes -
Outlook Plugin for easy handling SPAM
It would be nice to have an Outlook plug-in to report SPAM or false positive SPAM directly in Outlook not only in daily reports.
5 votes -
Add a comment to every email coming in from the outside, that way we know that it is definetly from an external sender.
For incoming emails that go through extra scrutiny or come in a second time on grey listed add the following comment inside the email:
The e-mail below is from an external source. Please do not open attachments or click links from an unknown or suspicious origin.
4 votes -
Send response to sender (ingoing and outgoing), if mail blocked (attachement) by SMTP Protection
Send response to sender (ingoing and outgoing), if mail blocked (attachement) by SMTP Protection.
It is standard in other spam filter and a must have in my oppinion.
20 votes -
SPX recipent password reset
Did the end-user password reset functionality go away at some point? I have a newly integrated UTM 9 at version 9.4. In the SPX end-user provided password template, it would be nice to have the user password feature back. Even with end user provided passwords they will surely forget eventually. I am trying to avoid getting into the password reset business. It also added to the ease of use to both my users and their recipients.
Thanks,
Ryan4 votes -
spoof attack
Working with Sophos support (case 5397031), the current product is not able to stop a spoof attack in which the "envelope from" is valid but the body sender address is spoofed as an internal address.
SPF checks are not effective in this scenario and the message is delivered.
30 votes -
Ability to block any subdomain in the Blacklisted address patterns
I would like to block @.example.com but it is impossible. Spammers use subdomain in order to bypass the filter.
160 votes -
Add text to Subject in E-mail
Currently we are able to replace the header of a e-mail message. for instance, I can search and replace the word "Subject" but it just removes the entire subject line and replaces it with the word I choose.
what I need, for information classification, is to add the word "CONFIDENTIAL" to the subject while keeping the rest of the line.
3 votes -
notification attachment
Notify sender if an incoming email has been blocked due to file extension filter in the antivirus section.
5 votes -
Block/Allow based off of header from
The ability for block and allow lists to apply to the header from field in the message, and the ability for the RDNS to check this header to confirm it is correct.
The ability to create rules to check for what the value of the header is and block or allow based off that field5 votes
- Don't see your idea?