Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Add option that forces full system scans after scheduled start is missed

    Hi,

    we've Sophos Endpoint Security and Control 10.3 running in a very large and distributed environment (3000+ machines). Not all of our computers do run at the time we configured a scheduled scan - as there are people that e.g. work only 4 days a week. Sophos AV currently don't care - so we've a lot of machines that does not meet our compliance requirements.

    Would it be possible to add an administrative option like 'Run task after scheduled start is missed'?

    BTW: Such an option even exists Windows Task Scheduler - so it cant be hard to create and…

    66 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  9 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  2. Single Download for a Full Installer that is automatically updated with the latest updates.

    Some of my customers have really bad internet which means that installing your software is beyond a joke for 30 or 40 PCs, I ended up creating a single installer from your white papers however a location to download a FullInstaller that always kept up to date with downloads would be really useful meaning that only future updates would need downloading.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →

    We’ll look again at the issue of “fat” or “single” installers in the future. We are currently working on an even thinner installer but that should pave the way to more flexibility and could mean an easier way to create your own customised (read fat) installer. We stopped creating the fat installers as they become out of date very quickly and we now also have more components to download and install for some licenses which would mean creating even more installers, better to have a “vanilla” installer that all can use and a method for customers who need a fat installer to create their own. No promises on a timeline for this yet though.

  3. Allow Anti-Virus and HIPS configuration at the dashboard (as it is available on SEC) for managed Cloud endpoint (desktop computers)

    Allow the configuration of the Anti-Virus and HIPS settings to be applied for the endpoints installed on desktop computers, such as:
    - HIPS configuration (enable/disable buffer overflow, suspicious behavior, malicious traffic)
    - Enable/Disable on-access scanning on read, write, rename

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  4. Application Control - Selective detect/block aplications on the same policy

    On the Application Control, allow, on the same policy, to block some applications while keeping others as detect only.

    37 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
    Under Review  ·  Karl responded

    We discussed this when developing the application control policy for Sophos Central managed endpoints. At the time we decided to maintain feature parity with on-premise managed endpoints (SEC). While this capability is not available it is on our short list but does not appear on any planned delivery timelines at the moment. We evaluate and prioritize enhancements for the product multiple times per year.

  5. Microsoft Exclusion Templates (e.g. SQL, Exchange, AD,...) 3rd Party Backup

    I would really like the option to enable exclusions based on Microsoft Recommendations. Once a year I manually go through the published recommended exclusions for Microsoft and other software (e.g. backup) and ensure I have those in my exclusions. It would be great (and save me a lot of time) if I had the option to check which exclusions I wanted.
    This seems to already be partially implemented in Sophos Cloud Server.

    16 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Need a way to check endpoint policy version and compare to Cloud

    Need a way to verify if an endpoint is using the latest policy. It would be great if policies were given a number or last updated field that could be compared to a client to see if it is running the newest one.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  7. PuremessageContent filter exceptions

    Currently in puremessage it is only possible to put a rule in for the recipient in the content filter however this isn't that useful for us.

    For example.....macro virus are making a comeback and therefore we want to restrict (or possibly just delete) any emails containing those attachments. however some genuine customers will send attachments with macros and we want to allow those users to get through the content filter.

    The only thing we can do without any program changes are to either allow macros and give users the choice to run or not (very bad idea) or block them…

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  8. Improve Wildcard Criteria

    Improve the Wildcard criteria for File Exclusions, inline with MS KB article KB822158.

    So that *.* or say Edb*.log can be excluded rather than having to open up the entire folder or a blanket exclusion on all files with the extension.log etc

    Thereby improving granularity and allowing exclusions to be very specific to named O/s files.

    Examples being:

    FileIDTable_*

    Ntfrs*.*

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Ability to change scanning of network files on Mac OS X from the cloud

    On the client for Mac OS X you have the ability to turn off "files on network volumes". If you turn it off it "jumps" back on(May be a bug). It would be great if it was possible to control scanning of network volumes from the Cloud Console through a policy.

    I see it as a checkbox solution: "Do you want to scanning network volumes? Yes/No".

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  10. scheduled scan: implement quoting in exclusion definitions

    One of the options we would like to see is that the exclusions specified with the exclude keyword can include quotes like "\ " to specify a space in a path / file specification. Currently, we have to workaround by putting asterisks at those character positions.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →
  11. scheduled scan: implement controlling Default extensions

    scheduled scans are still quite limited, as we can see here: https://www.sophos.com/en-us/support/knowledgebase/117346.aspx

    One of the options we would like to see is that we would like to control the list of Default extensions that is implicitely active: there is only a parameter called "excludeExtension"

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →
  12. SAVDI reload on sav update

    Please notify a running savdi about the performed pattern update by the savupdate process.
    This is more a bug than a feature-request and should be implemented very easily, because the savdi daemon writes a pid-file and has already implemented a signal for this (kill -HUP <savdi pid>).
    The implementation could be done in a few lines of code...

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  1 comment  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →
  13. HIPS for Linux

    We would like to see HIPS functionality added to the Sophos AntiVirus Linux client.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  2 comments  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →
  14. Add Kanguru Defender Elite30 model series Secure USB drives to supported Device Control list

    With an expected implementation of restricting use to solely encrypted flash drives for our company, add the Kanguru Defender Elite30 model series to the supported device list in the Secure Removable Storage category of Device Control.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  7 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  15. Implement automatic reporting in PM for Exchange

    Implement automatic reporting in PM for Exchange. In SEC there is already a possibility to send monthly reports. We also wish this for PM.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  16. SEC import/export policies

    Allow export/import of all policies in Sophos Enterprise Console

    28 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  2 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  17. SEC endpoint computer health check

    Feature to allow an admin to check if a computer is online and its current status directly from the console

    15 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  4 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Sophos Services preventing to stop in administrator User

    Sophos AV can prevent stopping on their services as you log on as Administrator account to prevent disabling the features of sophos.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  19. Push button self submission from SAV

    Allow users of Windows endpoints to simply submit suspicious files by clicking a button in the UI

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Malware prevention  ·  Flag idea as inappropriate…  ·  Admin →
  20. Removal tool for Eset File Security 4.5

    From customer:

    We are competing with other vendor very hard to move them to the Sophos cloud.

    One of the biggest competitors in Israel is ESET with is very common in Israel because it low price and a hard marketing work.

    When we win against them the first thing is to be able to remove the competitor.

    In the last few month we won in 2 SMB companies that both of the have around 350 workstations and about 30 servers.

    The first we moved from a customer from TrendMicro that we could not remove with the cloud software and we…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.