The Email Protection engine of Sophos UTM might report spam or virus infected emails which are false. However, these spam or virus infected emails may be delivered to the recipient occasionally. In order to minimize such cases, false positive, as well as false negative samples, should be submitted to Sophos.
The following sections are covered:
Applies to the following Sophos products and versions Sophos UTM
By standard, the action for spam and virus emails is now to quarantine and samples can be collected. Make sure that the samples are not older than 3 days.
If you've spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article. This is invaluable to us to ensure that we continually strive to give our customers the best information possible.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.