Will the new Xstream SSL/TLS Inspection engine support SSH Inspection?
This would allow to block SSH-Tunnels, X-11 Forwarding, Port-Forward, and also allow for AV Scanning on files being transferred over SSH.
There's already an Idea on Sophos Ideas about this. It has made in June/2018.
I agree with the feature....specially with the AV scanning to scan what travels inside the tunnel.