Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 2330 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to configure SPX encryption

Revan
Hello,
i am trying to configure the SPX encryption feature but have some problems to get it work.

i basically followed this guide: How to Configure Email Encryption with SPX on the Sophos UTM
but all my test mails are still unencrypted.

Here is an excerpt from my SMTP log: 
2014:09:17-11:16:59 utm-1 exim-in[8672]: 2014-09-17 11:16:59 SMTP connection from [192.168.xx.***]:34497 (TCP/IP connection count = 1)

2014:09:17-11:16:59 utm-1 exim-in[24604]: 2014-09-17 11:16:59 [192.168.xx.***] F= R= Accepted: from relay

2014:09:17-11:16:59 utm-1 exim-in[24604]: 2014-09-17 11:16:59 1XUBMB-0006Oq-0a ctasd reports 'Unknown' RefID:str=0001.0A0C0205.5419518B.0186,ss=1,re=0.000,recu=0.000,reip=0.000,cl=1,cld=1,fgs=0

2014:09:17-11:16:59 utm-1 exim-in[24604]: 2014-09-17 11:16:59 1XUBMB-0006Oq-0a  work R=SCANNER T=SCANNER

2014:09:17-11:17:10 utm-1 smtpd[24640]: SCANNER[24640]: 1XUBMB-0006Oq-0a Completed

2014:09:17-11:17:11 utm-1 exim-out[24647]: 2014-09-17 11:17:11 1XUBMM-0006PQ-9P => xy@web.de P= R=dnslookup T=remote_smtp H=mx-ha03.web.de [213.165.67.104]:25 X=UNKNOWN[:D]HE-RSA-AES256-SHA:256 C="250 Requested mail action okay, completed: id=0LwK2o-1YOvgP1AOE-0186VI"

2014:09:17-11:17:11 utm-1 exim-out[24647]: 2014-09-17 11:17:11 1XUBMM-0006PQ-9P Completed  


This thread was automatically locked due to age.
Parents
  • 0
    [Except for what's in brackets, I wrote the following before reading the article Revan linked to. When all else fails, read the documentation!]

    Revan, I'm thinking the UTM's SPX isn't "soup" yet - not ready for consumption.  DLP and SPX work well with the classic Sophos product, so this will come.

    The only way I got it to send something encrypted was with BOTH using the  "[secure:]" option AND having a word in the text that matched a DLP expression. [In fact, I wasn't using either of the first two options for Encryption, I was using the third, as this statement confirms.]

    [The following DO seem to be an issue.]

    I'm unable to get the system to generate a password.

    I'm unable to get the system to match either 'Social security numbers [USA]' or 'Social security numbers without separators [USA]' in 'Data Protection'.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    [Except for what's in brackets, I wrote the following before reading the article Revan linked to. When all else fails, read the documentation!]

    Revan, I'm thinking the UTM's SPX isn't "soup" yet - not ready for consumption.  DLP and SPX work well with the classic Sophos product, so this will come.

    The only way I got it to send something encrypted was with BOTH using the  "[secure:]" option AND having a word in the text that matched a DLP expression. [In fact, I wasn't using either of the first two options for Encryption, I was using the third, as this statement confirms.]

    [The following DO seem to be an issue.]

    I'm unable to get the system to generate a password.

    I'm unable to get the system to match either 'Social security numbers [USA]' or 'Social security numbers without separators [USA]' in 'Data Protection'.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML