I would like to request an addition to the 'Email Gateway - VIP Management" of a known email addresses field. For example if I have a VIP listed who is known to also email from their own personal gmail account, this should be an additional field to flag that this isn't an impersonation attempt but a known alias.

Kindly have a way to extract raw header logs of emails in a form of a file like csv. Thank you.

Within the Self-Service portal, users should have the ability to select multiple messages for Release or Deletion.

Kindly add export report in Message History of Sophos Central

The False Negative / False Positive reporting process is much too difficult to be useful. We need a button in the Sophos Central Email console to send an item directly to your support for review. If you ask me, this would be the single greatest improvement to your product since we're seeing a significant number of false positive and false negatives. There is no way that I'm going to take this much effort and time to improve a product that is failing to do what I've already paid for it to accomplish...

Allow confirmed spam outbound to be quarantined and inbound to be deleted by having separate settings for inbound and outbound.
Allow outbound filtering to be turned off.
Or get better at recognizing confirmed spam. We have constant problems with false positives outbound. They're not even marketing emails. Last time they were legal documents for a court case, and Sophos decided it would delete them.

This is for Sophos Email appliance as could not find an option specific for the SEA.
It would be great if an option can exist to allow specific domains to deliver emails to a specific Distribution group

Sophos Product: Email Gateway

Version in Production:​Sophos Central version

Feature Request Summary

Request:

The customer would like the ability to be able to show or hide the Green colour smart banners for mail domains and email addresses currently on the global allowlist on the Central Dashboard.

How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have: 1

It is possible to create overlapping rules in white and blacklisting. If whitelisting is processed before blacklisting AND the processing stops on a match we can use the following mechanism:

Blacklist *@contoso.com
Whitelist mr.user@contoso.com

This way everyone from @contoso will be blacklisted EXCEPT that one user.

Right now it blocks everything from @contoso (so the blacklist) regardless of the whitelisting.

Adding rule based allow/deny lists where you can filter emails based on header information would be a HUGE value add for your service!

The customer would like to be able to choose which Spam Filtering category will show up on user's Quarantine summary email. For example, if they want that ONLY Bulk emails are "releasable" by the users then they can configure it as such. So any quarantined emails for the reason of Confirmed spam or Suspected spam will not show up in the digest and is left for the Administrator to release.

9502583

I found that the Email Gateway Data Loss Protection Policy has no file format ".emz" option in the category of "Archive" or "Image", it has no control to filter it or not.

TOC rewritten URLs are creating the issue while opening with office 365 when URLs are added in the subject due to the Subject length limit configured on Office 365. There is no way to modify the limit on Office 365. So If there is any possibility to reduce the length of the encoded URLs at our end in future will help to resolve this issue.

There is an email subject length limit of 255 characters on office 365 end.

There should be a way to see the EXACT DETAILS concerning WHY an email was flagged as spam. Without that, we are GUESSING concerning concerning how to fix messages that are being flagged as spam

Would be nice to be able to 'exclude' specific file types from a DLP policy. e.g. mail with smime.p7s attachments are getting blocked even though that file type is not in the 'Use Sophos List'

Adding reverse DNS lookup to email gateway to improve security.

In email gateway there is an option to whitelist and URL but no option to blacklist an URL. When we find a malicious website we like to inmediatly block all access to this website. Maybe this option can be directly connected to the Sophos labs?

There should be an easier way for admins to submit spam to sophos from the message logs. On the flip side, there should be a way to whitelist from the quarantine as well.

Currently adding and removing e-mails from the Inbount Allow/Block list is a 100% manual process... in 2019.
I would vote for an automated methed (ideally via API) to add / remove addresses from this list.

Email Gateway - At Risk Users
> Report false positives from At Risk Users
There should be a button to directly white-list certain domains that are false positives and are categorized for At Risk Users.