Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Sophos Endpoint on a Mac cannot cope with Time Machine backups. This needs fixing.

    If you use Apple's Time Machine for backups which many if not most Mac laptop users will, and you receive an email with a threat attached which initially Sophos cannot detect then this will get backed up to the Time Machine backup. This in itself is not a problem, but later when Sophos is updated to be able to detect this threat then the next time a Time Machine backup runs and compares to existing backups this will trigger Sophos to warn about detecting a threat.

    The problem is that Sophos cannot clean up such threats despite what Quarantine Manager…

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  2. MAC OS X scheduled scan run at lower priority

    Currently for scheduled scans the option to run at lower priority is only available on Windows vista and above. Would it be possible to have this ability for MAC?

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Silent / Unattended install option for linux client

    Have the ability to do a silent / unattended install with the linux client.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Already Possible  ·  2 comments  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →
  4. Please notify your customers when new applications are added to the Application Control policy.

    You add applications every month but you stopped updating the link I was originally sent. How about you actually email your clients and let us know what you add? Or, at least keep an updated list of exactly what you add each month. I have requested this a couple of times over the years and was told it was in development. This seems like a pretty basic service, just let us know what the heck you are doing so we aren't caught off guard when something is suddenly blocked.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  5. Allow low priority scanning on OS X

    Allow the OS X client to scan in low priority mode. That means that apps get more CPU time than the scanning.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  6. sophos should add the option to manual update and option to manual scan for viruses and errors.

    Add option to manual update and option to manual scan for viruses and errors.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. Mac OS X Sophos deployment support

    Supporting 3,000 Mac OS X computers has become difficult with Sophos. The removal of the Apple installer metapackage (pkg) option by Sophos has forced manual install tasks to occur. I request that Sophos provide a supported solution for customers to repackage the sophos app installer into pkg format. Sophos can continue their reasoning on why the new app format is required. The increase of Mac OS X computers in the customer environments will hopefully receive some of the additional support tools offered the Windows customers. Currently forcing Sophos customers to third party solutions to deploy Sophos makes it more difficult…

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  8. Update sophos cloud in a network.

    The computers in a LAN with cloud antivirus installed could get updates from the other endpoints in the same network that already have downloaded them from internet without installing a computer or server as a repository.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  9. For CLOUD solution-0Day

    For CLOUD solution, please enable protection for 0day, boot sector, buffer overflow protection, HIPS. These are available for on-premise solutions but not cloud.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →

    The protection features in the Cloud endpoint are principally the same as those in the on-premise endpoint but less options are visible in the policy. HIPS is on by default, BOPS is off but where DEP is also present (most newer hardware) it will pick up activity before BOPS does. I am not sure about your references to 0day and boot sector though?

  10. In sophos enterprise console, a way of sorting PCs by the icon status NOT the computer name in the compuiter name field

    In sophos enterprise console, a way of sorting PCs by the icon status NOT the computer name in the compuiter name field

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Make Enterprise Console cross-platform

    Some of my customers' networks are forced to run a Windows machine just for Enterprise Console. I know this is a long shot, but if SEC were implemented on a cross-platform framework such as Qt (which provides everything .NET does and more,) it could be used on all of the major platforms (Windows, Mac, Linux,) greatly increasing deployment flexibility.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Howebrew

    The following idea for SAV for Mac free should be applied for all edition.
    https://community.sophos.com/products/free-antivirus-tools-for-desktops/f/17/t/10029

    Sophos installs a sweep command into /usr/local/bin, and a few auxiliary files. Doing this, Sophos also changes ownership of /usr/local and several sub-directories. This wreaks havoc with Howebrew, which by default installs to /usr/local and expects it to be writable by the "main user". In general, /usr/local should not be used by non-user controlled installations.

    A more polite way would be for Sophos to install its commands to /opt/sophos, and asking the user to and relevant paths if they wish to use the tools.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  13. Endpoint automatically clears up failed Update files

    Endpoint automatically removes temporary files generated by earlier failed Update tasks, when next Update is run. This will prevent disk space filling up unnecessarily with redundant files.

    10 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
  14. Reducing Spurious warnings from SAV for Linux

    Currently, SAV for Linux sometimes issues warnings like:

    An error classified as '0x3c: Unable to write to talpa socket' was detected in the file '/run/named/session.key' when closing it at Thu Jul 9 00:19:15 2015 HKT +0800 (2015-07-08 16:19:15 UTC). Access to the file was not allowed.

    The files involved are created by standard services for temporary information, eg. : /run/named/session.key /run/named/named.pid /run/ntpd.pid

    Support case [#5279639] has identified this as an interaction with AppArmor, i.e. one security application (SAV) wants to read everything, another security application (AppArmor) wants to restrict reads.

    The advised workaround is to exclude the concerned files from…

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →

    We have cleaned up a lot of messages recently. Please contact support if you find other examples

  15. Any updates for Windows 10?

    My windows update to version 10, states that the latest 10.3.12 version of the Endpoint Security is incompatible with the new version. Any updates??

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  16. Windows Defender disable on install or enable/disable control in GUI

    Hi,

    We've had performance issues at some offices after Sophos cloud has been deployed and we've traced this back to Windows Defender. On domain connected machines we can add a GPO to disable Windows Defender however we have non domain connected machines with cannot change without logging into each and switching off Windows Defender manually.

    Would it be possible to either disable Windows Defender on Sophos cloud installation or have an option in the GUI to enable/disable/check current status of Windows Defender.

    Many thanks

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  17. data control removal device execption

    Customer would like a feature to add an exception to certain Removal Devices within Data Control so the "secure" devices he has on the network are able to have said file types written to it.

    Company: Dreamworks Animation Skg, Inc.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Leakage Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Group Path (GroupPath, -g) support in Linux/Unix

    Allow Group Path assignment on managed Linux/Unix machines, through local config files and installation parameter, much like current Windows and Mac managed clients. (This is an RMS change.)

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Already Possible  ·  1 comment  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →
  19. Malicious Traffic Detection on Mac

    To stay in-line with Windows endpoints, Mac should also be looking towards MTD level protection. More and more companies are using Macs for their employees, the operating system is a known target for malware writers.

    There's nothing spotting Macs being part of a bot net, MTD is required to be able to detect and stop these connections.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Malicious Traffic Detection (MTD)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Windows Download Reputation for Standlaone Endpoints

    Prompt users to ask if they trust a file before allowing download

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Already Possible  ·  0 comments  ·  Download Reputation  ·  Flag idea as inappropriate…  ·  Admin →
2 Next →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.