This article provides the recommended steps for the Poodle vulnerability in SMTP Proxy on the Sophos UTM.
Applies to the following Sophos product(s) and version(s) Sophos UTM
For details about this vulnerability, see https://nakedsecurity.sophos.com/2014/10/16/poodle-attack-takes-bytes-out-of-your-data-heres-what-to-do/
Disable SSLv3 for SMTP and turn TLSv1.2 back on:
Some mailserver do not support TLS 1.2. In this case proceed as follows:
Some mailservers only support SSLv3. In this case you would need to reactive the support for SSLv3(vulnerable in this case) as follows:
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.