SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Mail Security: Separate Incoming and Outgoing Extension Blocking

    To prevent Intellectual Property Data-Loss, it would be much better,
    if there are 2 separate Filter Lists - one for Incoming and one for Outgoing Extension Blocking.
    Via Extension Blocking we want to prevent, that e.g. DWG-File Attachments are sent to customers by the Engineering department without approval.
    After approval, the secretary should be able to release the outgoing blocked Mail.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Stricter Control over Relaying Allowances

    Currently Email Relay checks for allowed users and Host based, in both cases the user name or IP address can be spoofed or hijacked by a spambot, it would be great to have more granular checks such as that the user allowed to relay should send with the same account and as well limit maximum number of emails per sender.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Mail Security: Email encryption - prevent void Certificates

    Currently if a user is enabled for mail encryption and there is an existing certificate it will be used - there's no check if it's still valid (date).

    PLEASE add a check that expired certificates are not longer used!

    regards

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Mail Security: Set Admin on Per-Domain Basis

    It would be nice if it was possible to name an administrator for a domain and have the Mail Manager in Mail Security show quarantine and mail activity just to/from addresses in an individual domain

    20 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Prefetch for POP3-Accounts

    Admin should be able to add/manage POP3 account for prefetch. Login in to the enduser portal is cumbersome as password of all users must be obtained first.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Mail Security: Custom Logo / Graphical SMTP Footer

    In Mail Security/SMPT/Advanced, you can enter text that is appended as a footer to each outgoing email.
    Please modify this feature to add a graphical file.
    We want to use this footer for advertising an exhibition e.g. with the CeBit-Logo.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Mail Security: Configuration Changes Based on Reporting

    The Quarantine Report should provide a 3rd option (besides release & whitelist), namely whitelist domain. This would trim the size of the user's whitelist considerably and cut down on false positives from the same domain.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. MailSecurity: official CA support for s/Mime Mail Encryption

    it should be possible to use an official CA for S/Mime Encrytion.
    no onlyt to verify external certificates but also to signate outgoing mails.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Mail Security: Stronger TLS Encryption

    X=TLSv1:RC4-MD5:128
    All other customers have TLS encryrtions like this X=TLSv1:DHE-RSA-AES256-SHA:256

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Notifications: SMTP Host Monitoring

    It should be possible to constantly monitor the status of the SMTP host that gets the mails after they were filtered by the Astaro's SMTP proxy. Is it pingable, is port 25 open? If not, please let my Astaro send me an email over another relay so I get informed that there is a problem and can do something about it.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Mail Security: Adjustable Max Queue Time

    It would be nice if you through the web interface, can change how much time a mail should be stored in the firewall before it reaches the bounce.

    So we have a server that went down on 29/12 but first came up again on 4 / 1, there are now some lost mails, because Astaro V7, only save the mails in 48 hours, and I can not find a way to change this?

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. 3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Mail Security: SMTP Routing via LDAP

    You have an address like @domain.com with some mail server behind your Astaro.
    The mail server have different primary domains, domainX.com, domainY.com ..
    Mail routing via LDAP query of mail address.
    Routing should be host based like:

    User1@domain.de -> smtp:mail.domainX.com
    User2@domain.de -> smtp:mail.domainY.com

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Domain-Based SMTP Routing to Internal Servers

    It should be possible, to choose form Host List different Hosts (internal IPs or DNS names) for sending mails to these hosts according to mail domain. For example, astaro smtp security should be able to relay mails from google.com to host A abd mails from web.com to host B. Same goes for outgoing mails and MTAs (smart hosts).

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Reimplement "Deny RCPT hacks"

    Earlier versions of ASG offered the possibility to deny email recipients which follow a sender based routing naming scheme (e.g. foo%bar.com@f00.b4r.com). This feature is missing since v6 I guess.
    Unfortunately, this feature is of great importance, since the default behavior of some MTAs (at least postfix) is, to "accept_percent_hack" from locally known IP addresses, which is true for the ASG. So a spammer for example could connect to ASG:25and send a mail to spam%victim.org@asg.domain. ASG will use callouts (if configured) to the internal MTA in order to validate the recipient address. Since ASG has a local IP address,…

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Email Encryption: Email Aliases

    Add more than one email address as alias to internal user for S/MIME and OpenPGP.

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. MailSecurity: Per-User SMTP-Profiles

    Define a per-user profile for smtp-proxy. Currently we can only do this by domain, but we need a way to have specific per-user settings for the filters.

    This is required for defining a differing file-extension-blocking-filter for special users, who should receive several extensions, but are in the same domain as the standard definition.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Recipient Verification "Clear Cache" Button

    As described in this Forum Thread:
    http://www.astaro.org/astaro-gateway-products/mail-security-smtp-pop3-antispam-antivirus/27996-caching-dial-out-recipient-verification-2.html
    It would help to have a button that clears the Recipient Verification Cache, because otherwise having corrected typos / misconfigs in backend mailserver might take 2 hours to be effective

    14 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Domain/Address-based Quarantine of Messages

    It would be great if we could drop incoming SMTP email based on domain or email address straight into quarantine rather than Blacklist.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. SMTP Authentication Helper for External Users

    Hi guys,

    Is there a way that astaro developer can patch exim to do some smtp authentication helper to the SMTP server protecting by astaro. For example i have hundreds/thousands of roaming users and all their pop3/smtp is in the mail server. We all know that when MAIL security is enabled we need to create a smtp user on the ASG and that user will be use for the roaming users. Many clients does not agree with this espcially who have many users changing their mail client is a huge job.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.