• RE: SSP.exe creating lots of traffic

    CraigJones
    CraigJones
    No, our products will be connecting to the domains listed, not directly to Amazon EC host-names. What you might be seeing is your Firewall inspecting the connection, seeing the IP the client is connecting to, performing a reverse lookup and the reverse…
    • over 8 years ago
    • On-Premise Endpoint
    • Sophos Endpoint Software
  • RE: No Internet access after update to 10.6 on Windows 10

    CraigJones
    CraigJones
    Hi, I would raise a support case for this.
    • over 8 years ago
    • On-Premise Endpoint
    • Sophos Endpoint Software
  • RE: SSP.exe creating lots of traffic

    CraigJones
    CraigJones
    SSP, just to be clear: SSP performs SXL4 online queries on behalf of the Malicious Traffic Detection and File Download Reputation features. The queries are used to determine the reputation of a file or URL. The data sent includes file names, file hashes…
    • over 8 years ago
    • On-Premise Endpoint
    • Sophos Endpoint Software
  • RE: SSP.exe creating lots of traffic

    CraigJones
    CraigJones
    It would be best to allow https access to: 4.sophosxl.net and ssp.feedback.sophos.com These are used by our next-gen MTD and Download Reputation features, which connect to those urls via the SSP service. In fact here's the full list of SXL addresses…
    • over 8 years ago
    • On-Premise Endpoint
    • Sophos Endpoint Software
  • RE: Malicious Traffic Detection

    CraigJones
    CraigJones
    It's because mtd.vbs uses wscript.exe (Windows-Based Script Host) to execute, this means the actual running application is wscript.exe and the detection quite rightly is against this. In a real world scenario the detection would be against an actual piece…
    • over 8 years ago
    • On-Premise Endpoint
    • Sophos Endpoint Software
  • Malicious Traffic Detection (MTD) not installed

    JonathanFlebotte
    JonathanFlebotte
    I have the latest version of the enterprise console and am looking to enable malicious traffic detection. While i have enabled it via the policies, the endpoint does not show to have it running. I used Sophos test to confirm it is not working. After…
    • over 8 years ago
    • On-Premise Endpoint
    • Sophos Enterprise Console
  • View related content from anywhere
  • More
  • Cancel