I appreciate your answers in the forum. But regarding this issue I do not agree with your suggestions.
1. Please don't get stuck on the word hotfix like used in SFOS. In SG UTM and especially in Astaro times, it was possible to react on those cases fast. And kind of hotfixes were done with small new Versions fast, which had just a some MB or KB download size.(see Index of /UTM/v9/up2date/ (astaro.com)) So it should be possible
2. Changing a mail workflow to some kind of Cloud is not possible or allowed for the customers. If it would have been possible, the customers would potentially have done it already. So your Sophos Central workaround is not really helpful. When customers use on premise it is not a good advice to give a workaround that would completly change the workflow. And keep in mind. We are talking about a patch in a small module which is minor (4.92 to 4.94-2).
3. There are lots of premium support customers in our case. They don't get support and fix in time. So Sophos should think about.
4. XG appliances for very small customers 105 eg don't get update fast and SFOS 17 has the feature of Hotfixes. But this is not the customer for mail anyway.
Regardless this Exim bug I'm more concered about the Support-/Fix-Handling in general. What if it is Bug in another module like VPN which allowes RCE. Should the customer turn of VPN for it's users for a week. Think of our current global concerns regarding Corona. Thousands of companies and users get advice from Sophos - sorry pleast go to office. We'll fix that issue in let's say 10 days?
I would appreciate if such kind of bugs get addressed faster. Not providing workarounds for thousands of companies just when Sophos could rollout a small patch. Little cost for one company and not for the customers that already paid for a security solution which should address this issues.
Sophos Gold Partner
4TISO GmbH, Germany
If a post solves your question click the 'Verify Answer' link.
