SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. time of click protection - url forwarding

    time of click protection can be easily bypassed by making the link to a bad site or download of a virus/malware file by entering the link from a short code site or via googles search link as all it does it check google say its ok and then the user can download the virus to be forwarded to a dodgy site and get infected.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. white sender from digest email

    digest emails only have the ability to release an email by reply or clicking the id mailto link.

    there should be an option to whitelist the sender / senders domain when releasing quarantine items from the digest via email.

    this will save having to log into the portal as you release the email and then have to remember to log in to white list separately or login to white and release the email which defeats the use of the release via digest email.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Digest support for multiple alias's

    if an active directory user has an email account which has multiple aliases such as jsmith@domain.com, with aliases of johnsmith@domain.com, john.smith@domain.com, jsmith@domain2.com

    if each of the above emails receives an email which goes into quarantine then the user will receive 4 separate emails each with its own list of quarantined emails.

    but when the users logins into the quarantine web portal with their windows domain credentials all quarantined emails sit together.

    Sophos need to be able to better handle the use of aliases and send digest emails based on the email account not the email address

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. email appliance - show sender's alias in quarantine instead of envelope-from

    in quarantine digest is shown only the sender's envelope-from instead of the "human readable" sender's alias

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Mails werden ohne Lizenz abgewiesen

    wir hatten heute den Fall dass die Testlizenz bei einem Testsystem beim Kunden abgelaufen ist.
    Die Installation der neuen Firewall hat sich um ein paar Tage verzögert und findet morgen statt.
    Von uns hat es leider niemand gemerkt. Der Kunde rief uns eben an hat uns darauf aufmerksam gemacht, dass keine Mails durchkommen würden.
    Wir haben die Lizenz wieder aktiviert allerdings sind alle Mails ca. 400-600 Stück über Nacht abgewiesen worden.
    Das hat jetzt zu einen bereits spürbaren Schaden beim Kunden geführt.

    Als Verbesserungsvorschlag würde ich mir wünschen, dass die Firewall die Mails sammelt und irgendwo einen Hinweis darauf gibt,…

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. UserPortal: upload User Certificate

    In the UserPortal it should be possible for the User to activate his own E-Mail Address for mail encrytion with the possibility to upload their own Certificate in PKCS12-format. Then there woul be no need to tell the administrator the password for the certificate. And the administrator had less to do. No need to collect and import all the certificates.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. filter smtp header

    Hello,

    we're looking for a solution scan the e-mail header agains senders name like john.doe@xyz.com. So we want to stop john.doe. This is most useful against phishing

    Haydar

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Notify solution providers of service issues

    Reflexion apparently had an issue that caused daily quarantine summaries to not be sent out. We were not aware of the issue until we opened a support request. Please send proactive service notifications when there are issues.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. SMTP: Change Intervall for Spool notifications

    We need to be able to change the standard Intervall for Admin notifications related to the SMTP Spool when the delivery of a mail fails e.g. due to external mail servers being offline.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. SophosSG430

    UTM: SophosSG430(9.409-9)

    Hi,
    I've set " " to "SMTP Profile ".(There are number of SMTP Profile settings.)However, if I select *. * In the Mail Manager's SMTP log screen, the log does not appear. Please change the setting in order to investigate the log efficiently.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Handling of quarantined email with not-abused attachments

    My Suggestion ist about mails / attachments, which are malicious but were classified only as spam.
    I would welcome possibilities in the Mail-Manager to
    - rescan a previous received mail, which is not delivered yet
    - deliver to a different account than to the original recipient to do e.g. deep checks. (Maybe this would harm personal rights or privacy policies, so take it just a guess. Maybe someone else has a more realistic proposal :-) )
    - cut off an attachment / to deliver the mail without the attachment
    Real life example: We had roundabout 10 mails in 20 mins,…

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Sandstorm check from quarantained mail's

    I would like to be able to send mail’s incl. attachment from quarantine to Sandstorm for scanning. The affected customers do not leave any dates and scan by hand ... dare but not completely to Sandstorm convert. The desired function would on the one hand bring the added value for the customer and certainly move one or the other to the purchase.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. SMTP look-ahead option to use VRFY

    for SMTP look-ahead recipient validation, add the ability to choose between RCP TO: (actual method) or VRFY: method. Some mail servers (ie DOMINO) always return OK on a RCPT TO (the email validation being done at a later stage on the domino server) . but they comply with the VRFY command.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Spam Digest and out of office reply

    If users in absence receive e-mail which will be blocked / quarantined by spam engine, sender will not informed about the absence by out of office reply since no incoming e-Mail will trigger the send out of the reply. Would be great to have a solution for that issue.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Encoded content filter on headers

    Hi,

    we received a phishing attempt in which an internal and effective email address appear as sender. After some analysis we found in the message header that sender and subject were encoded on UTF-8 (Base64).

    Here the modified header as example:


    Received: from hide (hide) by hide
    (hide) with hide (TLS) id hide via hide
    Transport; Wed, 10 May 2017 23:45:21 +0200
    Received: from hide (hide) by hide
    (hide) with hide (TLS) id hide; Wed, 10 May
    2017 23:45:21 +0200
    Received: from hide (hide) by hide
    (hide) with hider (TLS) id hide
    Transport; Wed, 10 May 2017 23:45:21 +0200
    X-Virus-Scanned:…

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. PLEASE Block The Following SPAM Relays ...

    146.185.173.242
    198.71.86.130
    212.67.203.197
    198.98.103.243
    87.106.216.61
    37.59.1.42
    46.32.237.164
    94.143.106.252
    70.33.188.112
    162.254.227.245

    23.253.182.167
    85.25.152.51
    70.33.188.111
    83.70.203.244
    46.101.142.211
    198.211.117.9
    41.220.69.172
    46.236.37.75
    87.253.233.151
    208.76.87.21

    87.253.234.157
    67.68.185.114
    64.74.172.33
    62.61.152.81
    241.231.152.125
    192.168.8.51
    80.152.197.106
    213.190.90.69
    46.1.235.149
    199.15.213.64

    199.15.213.67
    62.129.220.20
    92.55.215.145
    104.233.126.39
    194.214.71.115
    193.255.77.173
    91.98.96.132
    180.93.114.216
    41.223.64.250
    89.43.225.44

    154.53.200.34
    187.216.19.130
    116.109.199.249
    103.255.182.8
    89.44.132.2
    195.66.166.4
    112.196.181.198
    189.203.45.229
    177.247.99.187
    196.207.94.54

    113.183.166.19
    200.94.20.82
    5.22.213.193
    109.227.61.37
    81.29.245.233
    188.120.254.176
    117.255.240.109
    116.109.104.203
    14.139.171.93
    223.255.230.231

    13.92.137.57
    23.91.115.212
    193.1.181.190
    80.82.64.77
    24.239.210.176
    182.73.251.210
    82.78.94.236
    62.101.128.162
    27.251.28.143
    79.99.129.73

    67.59.193.228
    23.239.11.36
    213.243.196.11
    202.166.170.211
    79.99.129.74
    213.58.130.235
    216.183.106.114
    82.165.159.10
    124.81.81.93
    208.73.210.214

    104.148.33.38
    21.50.170.120
    80.147.113.10
    116.202.38.173
    218.205.187.230
    91.251.213.226
    93.120.161.130
    184.73.226.63
    38.84.70.196
    176.74.176.187

    118.70.103.68
    105.112.22.82
    103.211.42.5
    198.2.131.56
    52.124.3.43
    217.76.245.9
    74.208.79.101
    201.199.109.98
    181.174.187.103
    162.248.97.76

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. SEA - email quarantine summary

    Hello,
    actually Sophos Email Appliance have globally on/off "email quarantine summary".
    It would be much better if could enable it by domain or user or user groups.

    Manuel

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. email rejection - order of rejection

    I'd like to have a modified order for email rejection:

    precedence for "Rejected: Rcpt verification (Address unknown)"
    [Spammers should have the chance to be informed about not existent users / email-addresses!]

    then "Rejected: RDNS/HELO (RDNS invalid / missing)", "Rejected: RBL (black.rbl.ctipd.astaro.local)", ...
    [pars pro toto: all possible checks during opening of a smtp-session - this should avoid unnecessary traffic and bandwidth consumption]

    at last all other checks i. e. "Rejected: Spam", ... where the transmisson of the complete email is required.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. rendering of quarantined office document attachment

    For security reasons it is good to block/quarantine potentially dangerous attachments of oldstyle office documents possibly containing macros. Unfortunately this prevents delivery of the whole mail. Customer asked wether it is possible to replace the quarantined attachment with a pdf rendered preview, so that the mail can be delivered especially when it also contains other harmless attachments.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow logging of anti-spam feature results without blocking

    Currently, if I choose an anti-spam feature like 'Strict RDNS', I immediately block any sender that has not configured FCrDNS. I would like to be able to see 'RDNS invalid' in the log without that causing a block. Most spams probably would be blocked by something else, but it would be much easier to find false-positives and either inform the offending domain or make an exception for it.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.