SEC 5.2.1 and Sophos for MAC OS X Preview (9.0.3)

bobcook wrote:

Very curious to hear why you'd manage proxy settings for endpoints that are outside your own network. Sounds like users take these systems offsite, which I'd expect makes your own proxy servers unreachable. We didn't include the ability to set the proxy settings because we figured it was not useful.

---

In the past our users did update through a proxy server when on site (primary server) directly to Sophos and although they don't anymore, if circumstances were to change it's nice to have the option (although I can understand why this might be somewhat confusing/would be something that is no longer available).

---

bobcook wrote:

Thanks for this list. Its pretty extensive but not unrealistic. Please understand that we aren't going to create a separate tool to manage all possible settings. So although we may offer ways to pre-configure many or even all of these settings, we aren't going to guarantee your users can't change them. That is what Enterprise Console and Sophos Cloud are for.

That wouldn't be a problem for us as it would be no different to the situation we currently have with SUM - as the users' machines are generally their own, it wouldn't fall upon us to ensure the software stays configured/remains installed on their computers, but covers us from our end that we at least provide an appropriately configured solution for them when setting up their computers on our network; once they leave our institution, the software is removed and the computers would no longer be in our control anyway. The main concern is that we can configure the endpoint to appropriately scan and remove threats and notify/inform us/the user of any action that they need to take should there be an issue.

I must confess that I am unfamiliar with your Sophos Cloud offering, so we will investigate this and see if it is suitable option for our end users.

Many thanks.

bobcook wrote:

Very curious to hear why you'd manage proxy settings for endpoints that are outside your own network. Sounds like users take these systems offsite, which I'd expect makes your own proxy servers unreachable. We didn't include the ability to set the proxy settings because we figured it was not useful.

---

In the past our users did update through a proxy server when on site (primary server) directly to Sophos and although they don't anymore, if circumstances were to change it's nice to have the option (although I can understand why this might be somewhat confusing/would be something that is no longer available).

---

bobcook wrote:

Thanks for this list. Its pretty extensive but not unrealistic. Please understand that we aren't going to create a separate tool to manage all possible settings. So although we may offer ways to pre-configure many or even all of these settings, we aren't going to guarantee your users can't change them. That is what Enterprise Console and Sophos Cloud are for.

That wouldn't be a problem for us as it would be no different to the situation we currently have with SUM - as the users' machines are generally their own, it wouldn't fall upon us to ensure the software stays configured/remains installed on their computers, but covers us from our end that we at least provide an appropriately configured solution for them when setting up their computers on our network; once they leave our institution, the software is removed and the computers would no longer be in our control anyway. The main concern is that we can configure the endpoint to appropriately scan and remove threats and notify/inform us/the user of any action that they need to take should there be an issue.

I must confess that I am unfamiliar with your Sophos Cloud offering, so we will investigate this and see if it is suitable option for our end users.

Many thanks.