Thread Info
  • State Not Answered
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 14 replies
  • Subscribers 31 subscribers
  • Views 3267 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Everyone Please Read!!! Sophos Removed a Feature with No Notice

MichaelBolton

Hello everyone,

Most may not realize this because you don't use it, but Sophos has decided to remove a feature from our firewall with no notice at all.

They have removed the HTTP/HTTPS bookmark feature from clientless access on V17.X. This feature removal was previously announced and told it would be in an upcoming major release, I.E. V18. It would not affect V17.

Over the past weekend, Sophos decided to remove the feature from any device running V17.x. They did so with no notice at all. The hotfix was deployed the same day the notification was released. Here is the notification https://community.sophos.com/products/xg-firewall/b/blog/posts/sophos-xg-firewall-http-s-bookmarks-feature-retirement.

This feature may not matter to you, but I bring it up beacuse our firewall vendor decided to remove a feature from a production product with no notice whatsoever. I tagged  and  in the comments but did not get a response.

If Sophos will remove that feature with no notice, what will they do in the future? What an unbelievable move from a firewall vendor. We use this feature and have no alternative right now. WAF does not suport 2FA and we cannot install a VPN client as we don't own these machines.

Let's all ask for answers! How can Sophos do this with no warning?

Mike



This thread was automatically locked due to age.
Parents
  • 0

    100% agree.

    Even if this is a rarely used feature and the technology behind was never meant for large scale deployment, it is a nogo to remove features via hotfix on existing devices.

    it is okay if features are removed in future releases, but it is up to the customer to decide when to upgrade.

     

    from a legal standpoint, the customer has purchased a product for which they have paid money for a feature set at that time. 

    in my opinion, sophos should not be allowed to remove a feature that the customer has paid for without the customer's consent.

    of course, the customer can disable automatic hotfix, but that would heavily reduce the security, in case of real "hotfix" situations.

  • 0 in reply to Samuel Heinrich

     that notice stated it would be removed in the next major version, which would have been V18, not V17.x. The notice for V17 was posted on June 20th and the hotfix was deployed the same day. That did not give any customer a chance to migrate off of that feature which is unacceptable. The feature should have remained on any firewall running V17.x and the customer would have known if they upgrade to V18, they would lose the feature.

     

     exactly. I knew it would not be available when the units were upgraded to V18, but to remove something with no notice is ridiculous. I did not even have time to disable automatic hotfixes because they pushed it as soon as the notice was posted.

Reply
  • 0 in reply to Samuel Heinrich

     that notice stated it would be removed in the next major version, which would have been V18, not V17.x. The notice for V17 was posted on June 20th and the hotfix was deployed the same day. That did not give any customer a chance to migrate off of that feature which is unacceptable. The feature should have remained on any firewall running V17.x and the customer would have known if they upgrade to V18, they would lose the feature.

     

     exactly. I knew it would not be available when the units were upgraded to V18, but to remove something with no notice is ridiculous. I did not even have time to disable automatic hotfixes because they pushed it as soon as the notice was posted.

Children
No Data