This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos for virtual environments does not block Viruses when downloaded via https

I just installed the Sophos for virtual machines on one of our ESXi servers and the Client onto a an RDP client run-in on the same VM.... 

As long as the EICAR Test virus is a zip or com everything is fine. However, if it comes disguised as a txt file, it passes though https as if no endpoint security was present.... 

makes me quite nervous and I can't recommend the rollout of this product...

 

 



This thread was automatically locked due to age.
Parents
  • Hello  

    If the file is .txt, SVE will not scan it unless you have “Scan all files selected” or have “.txt” added to your extensions list. In both cases it will only ever detect the eicar signature text in the file if it’s located at the beginning of the file.

    We complete this workflow as part of our manual testing with each release. If you are expecting the download to be blocked, this is where we differ from other products, in that we have no web filtering capability in this product.

    Thanks 

    Mark

Reply
  • Hello  

    If the file is .txt, SVE will not scan it unless you have “Scan all files selected” or have “.txt” added to your extensions list. In both cases it will only ever detect the eicar signature text in the file if it’s located at the beginning of the file.

    We complete this workflow as part of our manual testing with each release. If you are expecting the download to be blocked, this is where we differ from other products, in that we have no web filtering capability in this product.

    Thanks 

    Mark

Children
No Data