Hi Sophos-Team,

it would be great to add two links to the quarantine report: allow or block the senders domain. So the black/whitelists don't get flooded by individual emal addresses. And genereated spam emails are blocked by one click, instead of blocking each one every day.

Additionally, this feature could be activated/deactivated in report settings

When adding a new user manually, in the overview area for example, there should be an option (tick-box?) for adding him a mailbox within Central Email automatically.
Of course then the "Email adress" field, in the wizard is mandatory.

I would love to be able to (for example) block all emails that reference "iTunes cards" or other key words. we don't use gift cards. we had someone fall for the 'buy the iTunes cards and send me the codes' scam from someone who merely spoofed the name of one of our executives. Proofpoint gave me that capability.

Time of click Window alert can be customized (in the settings) , but not all the Window.
English is kept for the rest of the window .

Platinium customer request a Full translation of the window ("Warning , this site may contain malicious content etc..." ) in French .

With encryption turned on, all outbound emails are scanned and processed by the ZIX servers to check for a trigger of encryption policy.
However, all emails, regardless of whether they were sent encrypted or not, receive an email footer "This message was sent securely using ZixCorp"

This is very misleading and causes confusion when emails are not actually encrypted.

My suggestion is that only emails that are actually encrypted receive this message footer.

Please unsubscribe me from this.
If emails I send cannot be delivered, I cannot work as an independent writer or as a journalist at my paper.
So, reluctantly, I must unsubscribe from my free trial.
I had just wanted to try your program that stops ransomware and am not sure what I should have chosen from the set up page to do that.

If a link can be blocked at the time of click, why not also block it before arrival?

If a URL is already known to be malicious, it might as well be cause to quarantine the email, and users do not get anxious when they see a 'malicious' email come in, and therefore decreasing trust in the product.

Naturally, the time-of-click feature is useful for cases were a URL becomes malicious after email delivery, so this would remain in place.

setting manager’s approval on outgoing emails with attachment files. In other word, we could manage and monitor who is sending what files outside the organization for what reason. It is like send if and when approved.

Sophos Email Protection logs should display outgoing emails that are sent w/ BCC. How can administrators diagnose issues when they don't have all the tools available?

Hi,

It has been suggested a good way to deal with frequently released emails would be to either grey or white list them automatically. Perhaps this could be considered unless it is a feature that just needs to be enabled somewhere.

We have several domains, some routed to different Exchange Servers, it would be nice if the reports allowed us to filter by domain.

Blocking newly registered domains would be a great help. I would say a large majority of the phishing, spam, and malware emails we received are from newly registered domains (NRD). Bad guys create new domains all day long to used to launch attacks. On our firewall we can block those sites as a category. It would be helpful if this could be a setting in the email policies to block these as well.

1. Set the blacklisted IP or domain from delete to quarantine in Sophos Central Email Advanced.

Seria ideal que mostrara la razón de la cuarentena cuando miras los historiales de mensajes en el Email Gateway.
Si el usuario libera o elimina el correo es imposible saber la razón

Having the ability to quarantine 'free' email domains such as gmail, yahoo, aol, etc would be HUGELY helpful.

On the email gateway dashboard, it shows a report of emails scanned. But you can't click on the categories and bring up emails i.e DLP violations etc. This will be a very good feature if it can be added to make administration simpler.

On the Quarantined Messages page, I should be able to select messages and add them to the Allow List, as well as Release or Delete them. So, clicking the Allow button would release the message for delivery AND add an entry in the Inbound Allow list.

Thanks.

Search messages from "Reason" like DLP violation
or "Suspected Spam". Right now you can only sort all the messages