It would be nice if it were possible to customize the Spam Report. E.G. to add Blacklist and Delete Buttons.

SOPHOS UTM Mail Protection gives the option for crating exceptions on Email Address / Domain, IP or recipient.

The Email Address which is used for white listening is the ENVELOPE header in the email.

We have the problem, that we have an service, which use Amazon AWS for sending mails. This mails run into the quarantine.
To whitelist, we need to whitelist die AMAZON AWS Envelope domain, which are for all AWS services the same.

Please create an option to choose the header flag – ENVELOPE or FROM field.

Thanks

With current exim configuration, the "Out Of Office" replies getting rejected by the BATV due to the null return address in the reply. Please add a feature to handle these messages pass through the BATV feature.

It should be possible to create an exception for encrypted attachments without having to disable the malware scan.

Would like the option to have the quarrantine report weekly, as some users get lot of mailing list type spam, and it gets a bit annoying having the report emailed every day.

Office documents e.G. Word habe specific MIME Types - old .doc documents (application/msword) or new with Macro .docm (application/vnd.ms-word.document.macroEnabled.12) can have Macro, new type .docx (application/vnd.openxmlformats-officedocument.wordprocessingml.document) can not have Macros and are secure!

Sophos Mail Filter makes no difference and send every File in Quarantine.

It would be perfect, if the dangeres Files (.doc and .docm) can go to Quarantine and the safe Files (.docx) send direct to the User.

I want to appoint the format of the isolation report email from Sophos UTM.
In the case of an HTML form, I am garbled.
I want the format conversion function of the isolation report email.
=========================
Sophos UTMからの隔離レポートメールのフォーマットを指定できるようにしてほしい。
HTML形式の場合、文字化けする。
隔離レポートメールのフォーマット変換機能が欲しい。

I want to appoint an origin of transmission address of the isolation report email from Sophos UTM.
=========================
Sophos UTMからの隔離レポートメールの送信元アドレスを指定できるようにしてほしい。

With Version 9.510-5 there are two Options for SMTP TLS
"Require TLS negotiation/hosts/nets"
"Require TLS negotiation sender domains".

Please add the option to Require TLS negotiation for recipient Domains

Dear Sophos Team,

please add an TLS Version selector to the Email Protection settings, like it's already done in "Webserver Protection > WAF > Advanced".

In addition, please add an Ciphersuite Selector, so advanced users can specify further down which ciphersuite ( ECDH-* / DHE-*/ AES-*/ .. / ) they want to use.

Kindly provide an official way to close port 25, 467 and 587 to WAN side of UTM aside from creating DNAT blackhole and disabling SMTP proxy (since customer is using this feature for outbound mail only)

When accepting mail messages, the sender mail addresses, the domain part, are not checked for existence. No queries are made as to whether the domain holds an MX record, for example. This should apply to both address fields, envelope and header.
In this way, fake addresses of stations could be avoided.

The passwords of the registered recipients should be included in the backup. During a recovery, users must always re-register.

If ipv6 is on, than its also on für smtp. But we get no static IPv6 by Deutsche Telekom AG without a expensive contract; but we get a static IPv4. With no static ipv6 we cant configure the AAAA-Record / PTR /RDNS . So our ipv6-Mails will classified as SPAM because we cant disallow to send mails via ipv6. But we will need ipv6 in the future for VPN-connections.

Feature Request - Support for multiple domains for DKIM on Email Appliances

We have two email domains that send through our clustered email appliances and want to setup DKIM for both domains, however currently the email appliances only support DKIM for a single domain.

We would like the ability to enter more than one selector and private key within the DKIM settings.

Outlook add-in so users can add senders to their blacklist on the local XG. (somebody has previously suggested an add-in for reporting spam to Sophos, however this would be a more immediate solution so the users are confident they won't see that spam item again)

If users in absence receive e-mail which will be blocked / quarantined by spam engine, sender will not informed about the absence by out of office reply since no incoming e-Mail will trigger the send out of the reply. Would be great to have a solution for that issue.

Provide support for newest version of Outlook 2016.

Right now users are only notified of inbound quarantined mails through the quarantine digest. If an outbound mail gets quarantined (e.g. because the attachment is unscannable) no one, not the sender, not the recipient, not the administrator gets notified about this. The mail therefor sits silently in the queue until it is pruned according to the quarantine settings. Such mails should at least be included in the quarantine reports, if not in even in separate notifications.

Implement an IMAP proxy for UTM/SG 9. Provides filtering and scanning functionality for those that use this type of mail retrieval.
IMAP becomes more and more important for mail clients. The use of POP3 declines. On the other hand, threads caused by malicious mail attachments like crypto trojans or macro viruses are more dangerous than ever. By not implementing sufficient security for IMAP protocol Sophos leaves an increasing part of UTM/SG customers alone.