MailSecurity: IMAP Proxy
Implement an IMAP proxy. Provides filtering and scanning functionality for those that use this type of mail retrieval. It rounds out our offering to include all 3 of the major ways users access mailboxes.
IMAP is a must if you would like to call this feature mail security. And please start driectly to implement SSL/TLS for IMAP.
Hartmut Mench commented
Whats the argument to sell Mailsecurity?
It must be possible to scan Mails from providers like google mail.which not support pop3
Mark Doorey commented
With all respect Bob, I added this request for IMAP Proxy for all those MAC's out there that use IMAP. Not all UTM's are installed in enterprise environments. I install them in consumer and SMB environments. It would be good to add this function even if "Apple" users think that they are immune to threats.
Bob Alfson commented
With all due respect, I think Gert threw this idea out to measure support and likely was surprised at the number of votes it got. I think this idea should be rejected.
Here's how to use UTM Email Protection to get AV and AS with Quarantining for IMAP email with a domain you control: http://www.astaro.org/gateway-products/mail-protection-smtp-pop3-antispam-antivirus/49131-9-106-16-pop3-proxy-mails-not-sync-server.html#post244819
It is possible to add this? If yes, at which version?
This feature is essential today because there are lots of mail servers using this!!!
A IMAP Proxy would be great
I also need this Feature
Adrian Baxter commented
It's disappointing that there is no response from Sophos about this.
I think that perhaps the most relevant point is that many competing products already have this, and Sophos UTM will need it to remain competitive as IMAP becomes more and more prevalent.
I absolutely agree. IMAP Proxy for antispam and -virus is essential!
A really good idea. I am only using IMAP for my 1&1 post boxes as well as with Gmail to have access to everything being at home or on the go. Unfortunately I am not able to scan those traffic with my ASG120. So I also would appreciate a IMAP proxy in addition to the POP3 and SMTP Proxy due to the reason that many small offices/companies not allways having a own Mail server which downloads (POP3) and send (SMTP) the emails on its own. For the same reason as I use IMAP many small companies does it. So it really would improve the ASL.
Matthias Fleschütz commented
@christian: ok, you've just pointed out the reasons more detailled.
But the way Bastian tried to say his comment is a fact, ignoring other markets and products is simple what i wrote....
@Bastian: This is arguable to a degree. Probably, most enterprise environments that are Sophos' target customers have a sort of Groupware system that does not necessarily use IMAP as its core protocol (Groupwisse, Notes, Exchange, you name it). If they don't run their own on-premise Groupware system, they'd either use a managed Exchange installation or use groupware systems that are purely browser-based (such as the Google Apps suite).
However, you're under the (in my opinion) wrong impression that the UTM's target market is sorely the enterprise network. However, more and more UTM deals are about provider installations or other installations that have to deal with a more open network; whether it would be public Hotspots, university networks or ISP installations. Within those networks an IMAP proxy is not only nice, but in some deals mandatory - I've personally seen Astaro not be picked because of its lack of IMAP proxy capabilities in the past.
On the other hand, unencrypted IMAP protocols are hard to find in the industry anymore. So if we are talking about an IMAP proxy here, it needs to be able to deal with SSL encrypted sessions, similar to how the HTTPS proxy can deal with End-to-End encrypted sessions as well.
@Matthias: Most companies don't want to use Microsoft products, but - yes, this is a hard truth to face for open source evangelists/community members - they do it anyways. The alternatives are simply not as widely spread as Exchange is. And, calling some other opinion "BS" without giving examples or a further reasoning earns you the red herring of the day IMHO.
Matthias Fleschütz commented
@Bastian Haas: sorry, but that is BS! I know a lot of companies that really dont want to use M$
Bastian Haas commented
No one really needs IMAP in today's enterprise environments. Everyone uses solutions like Blackberry oder Exchange ActiveSync.
Desktop-PC, Tablett und Smartphones.... alle mit Email und alle sollen den gleichen Email Stand für ein Postfach haben! Das geht nur mit IMAP.
Ein IMAP Proxy wird zum muss!
IMAP is an essential mail retrieval protocol.
Leaving it out is a significant omission.
It is also a security hole.
Mario Schmidt commented
SSL scanning should be supported as well, even transparent.