Sophos XG Bug: Cannot send Backups using Amazon SES

Hi Folks,

Sophos XG appears to have a bug where it doesn't interact with some SMTP servers properly.

In this case Amazon SES (Simple Email Services) cannot be used with Sophos XG for sending Backups. Other notifications work fine but backups generate the following SMTP error: 

2024-03-30 22:57:43.705Z [1390] rTNXBs-m6OVmh-6I ** rhys@myemail.xyz F=<fwxg01@mydomain.com> P=<fwxg01@mydomain.com> R=router_for_notifications T=notification_smtp H=email-smtp.ap-southeast-2.amazonaws.com [3.24.9.22]:587 I=[123.124.125.126]:50972 X=TLS1.3:TLS_AES_256_GCM_SHA384:256 CV=yes DN="/CN=email-smtp.ap-southeast-2.amazonaws.com": SMTP error from remote mail server after end of data: 554 Transaction failed: In parameter list <0x000d0x000a name="Backup_[Serial]_SO01_SFOS-20.0.0-GA-Build222_31Mar2024_11.57.24">, expected ';', got "name" DT=1.168s

It appears that there is something malformed in the backup emails which is non-compliant with the SMTP protocol which AWS enforces rigorously. 

I am running the free home license so cannot log a support call. This issue has been raised elsewhere in the forum, but we don't yet have a fix The value that the free license brings to the wider Sophos ecosystem is that tech enthusiasts like me, can spend our own time troubleshooting and diagnosing issues and then report them here in the forum. I know the Sophos team values the wider Sophos community so I do hope they will take the opportunity to improve the product for all and resolve this issue.

Kind Regards

Rhys



Added TAGs
[edited by: Erick Jan at 4:32 AM (GMT -7) on 3 Apr 2024]
Parents Reply
  • I will watch this one with interest; one of our techs runs SFOS at home and found the same issue, and it really looked to him as some sort of issue with SES just flat out not liking these emails.  Other SMTP relay services worked fine.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Sophos Platinum Partner

    --------------------------------------

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

Children
No Data