Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Replies 18 replies
  • Subscribers 0 subscribers
  • Views 3381 views
  • Users 0 members are here
Options
Suggested

[9.165][BUG] Endpoint Protection Reporting

scorpionking
Hi!

Will the reporting in the Endpoint section in WebAdmin be improved?
It is really annoying that a weekly scan is still shown as an alert!

There were several promises in the last months to improve this in 9.2...
Parents
  • 0
    If you enable E-Mail notification for "Endpoint Virus Detection" and have a scheduled scan you get a lot of E-Mails like: 
    The endpoint with MCS ID ******xx-***x-***x-************ detected a virus.

    

    ScanCompleteEvent: Scan 'Clients (Advanced)' completed. 

    Everytime I get an E-Mail with the subject "[utm][WARN-501] Endpoint Virus Detected" I'm scared of having a compromised network, then it turns out this has only been a scheduled scan.

    Please, please, please change at least that a scheduled scan isn't treated as a threat anymore!

    ----------
    Sophos user, admin and reseller.
    Private Setup:

    • XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)
    • UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
  • 0 in reply to scorpionking
    If you enable E-Mail notification for "Endpoint Virus Detection" and have a scheduled scan you get a lot of E-Mails like: 
    The endpoint with MCS ID ******xx-***x-***x-************ detected a virus.

    

    ScanCompleteEvent: Scan 'Clients (Advanced)' completed. 

    Everytime I get an E-Mail with the subject "[utm][WARN-501] Endpoint Virus Detected" I'm scared of having a compromised network, then it turns out this has only been a scheduled scan.

    Please, please, please change at least that a scheduled scan isn't treated as a threat anymore!


    I agree, this is ridiculous behavior, I hope they fix it.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

Reply
  • 0 in reply to scorpionking
    If you enable E-Mail notification for "Endpoint Virus Detection" and have a scheduled scan you get a lot of E-Mails like: 
    The endpoint with MCS ID ******xx-***x-***x-************ detected a virus.

    

    ScanCompleteEvent: Scan 'Clients (Advanced)' completed. 

    Everytime I get an E-Mail with the subject "[utm][WARN-501] Endpoint Virus Detected" I'm scared of having a compromised network, then it turns out this has only been a scheduled scan.

    Please, please, please change at least that a scheduled scan isn't treated as a threat anymore!


    I agree, this is ridiculous behavior, I hope they fix it.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

Children
No Data
Unfiltered HTML