Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 27 subscribers
  • Views 12655 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

List of IPS rules, their description and understand if a patch or misconfiguration is in place

lferrara

UTM9 used to have a html page like this one:

https://lists.astaro.com/ASGV9-IPS-rules-2970.html not reachable anymore where filtering per rule id, we were able to find signature details, CVE and other additional information in order to help administrators if a patch on system/piece of software was missing or just remove that signature because of false positive.

Now on XG not all the signature can be found on internet. In Sophos, can you make sure to build a list with all the signatures and how to deal with them?

Thanks



This thread was automatically locked due to age.
Parents
  • 0

    , can you investigate when a Public URL will be available for us for IPS signature like UTM 9 and which are the actions the users need to do in order to understand if the IPS signature matched is a false positive or a misconfiguration, patch missing, etc...?

    This is really important. All the time I have to investigate for IPS Rules and signature on behalf of my customers.

    Thanks

Reply
  • 0

    , can you investigate when a Public URL will be available for us for IPS signature like UTM 9 and which are the actions the users need to do in order to understand if the IPS signature matched is a false positive or a misconfiguration, patch missing, etc...?

    This is really important. All the time I have to investigate for IPS Rules and signature on behalf of my customers.

    Thanks

Children