Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Subscribers 0 subscribers
  • Views 23987 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

PureMessage Threat Detection Data out of date messages

bg80

Hi there,

Running Sophos PureMessage for Exchange and every night past few weeks I get a mail alert telling me:

The following detection data is out of date on server MAIL01:

Threat detection data

Please ensure Sophos AutoUpdate is configured and working correctly on the server.

I'm unsure whether that is accurate or if it is a false alarm so to speak as the updates seem to be working.

Can someone also please clarify that by running the auto-update on the Endpoint it updates the PureMessage definitions also. I have this set to update via local server first and second the Sophos server. Runs every 10 mins. From the product info page on the endpoint just now:

[Updating]
-[ Software]
Sophos AutoUpdate 2.9.0.344
Last checked for updates 18/09/2014 09:25:34
Update status Success

From PureMessage:

Spam detection engine version:2.7.2
           Spam detection data version:

2014.9.18.81819

So I suppose my question is why am I getting the alerts and how can I check if everything seems to be working properly?

Appreciate the feedbackl!

Thanks

:53385


This thread was automatically locked due to age.
Parents
  • 0

    Ok thanks Christian,

    Have checked the AV and HIPS as requested and it is:

    [Anti-virus and HIPS]
    -[ Software]
    Sophos Anti-Virus 10.3.1
    Release status Full
    On-access status Enabled
    Detection engine 3.50.1
    Detection data 4.98G
    Virus data date 12/02/2014
    Items detected 6475209
    Detection identities 1639
    HIPS rules version 10.3.33.1
    HIPS configuration version 1.0.65.1
    Last updated 18/09/2014 12:02:13

    So the virus data date is old. Cocerning. Why so?

    Not sure what exactly is mean by 'suggests that you use the Previous Extended subscription of the Endpoint component' but I assume it is related to the fact I initially started with Sophos PM as a trial and then purchased and applied a full licence. Am I incorrect in thinking this was sufficient to keep it upto date?

    Thank you

    :53407
Reply
  • 0

    Ok thanks Christian,

    Have checked the AV and HIPS as requested and it is:

    [Anti-virus and HIPS]
    -[ Software]
    Sophos Anti-Virus 10.3.1
    Release status Full
    On-access status Enabled
    Detection engine 3.50.1
    Detection data 4.98G
    Virus data date 12/02/2014
    Items detected 6475209
    Detection identities 1639
    HIPS rules version 10.3.33.1
    HIPS configuration version 1.0.65.1
    Last updated 18/09/2014 12:02:13

    So the virus data date is old. Cocerning. Why so?

    Not sure what exactly is mean by 'suggests that you use the Previous Extended subscription of the Endpoint component' but I assume it is related to the fact I initially started with Sophos PM as a trial and then purchased and applied a full licence. Am I incorrect in thinking this was sufficient to keep it upto date?

    Thank you

    :53407
Children
No Data
Unfiltered HTML