Sophos Central Update: More protection for Linux and Windows servers
What was introduced about two years ago as Sophos Cloud is now being further developed by Sophos under the new name Sophos Central. Although we ourselves understood the visions at that time, we were not sure whether our existing customers or new customers would jump on such a “cloud solution”. Meanwhile, these doubts were completely unfounded and our clients’ attention to Sophos Central is growing.
Sophos is working incredibly hard to develop this great product and is constantly releasing new updates with new features. We reported on the recent integration of Sophos Wireless into Sophos Central in our latest blog post.
In this post we briefly present the latest innovations which are exclusively dedicated to the protection of servers.
Sophos Central Server Protection innovations
The following features are new to Sophos Central and make server security even more effective and simple:
1. Malicious traffic detection for Linux and Windows servers
The Malicious Traffic Detection (MTD) can block connections that may attempt to take control of your server (e.g. command and control server). This feature greatly increases the security of your server because there are now some complex types of malware communicating with remote servers to obtain further instructions, updates or data uploads. If malicious traffic is detected, this is a first indication of malware activity. You need the Sophos Central Server Protection license to use this feature.
2. Peripheral Control
It is worthless if the server is perfectly protected against attacks from the Internet, but malware could reach the server via a USB stick, for example. Therefore, there should be policies for peripherals such as removable media, wireless, modems and devices such as phones, tablets and cameras. With the new Peripheral Control in Sophos Central Server Protection this is now possible and you can easily control and block the use of peripherals on your Windows servers, but also exclude individual peripherals from control.
3. Application Control
Because critical data is stored on servers, it is important to prevent unsuitable applications from running on them. Application Control provides the flexibility to define policies to allow or block certain categories of known applications on Windows servers. Application Control is an extension to the “Server Lockdown” feature, which goes one step further and only allows explicitly allowed applications to run. You need the Server Protection Advanced license to use this feature.
4. Download Reputation
It goes without saying that for the security of servers only trustworthy files should be downloaded. The Download Reputation feature helps prevent invalid files from reaching your servers and judges the trustworthiness of each file based on SophosLabs analysis. This feature is now available with a standard or advanced license on Windows servers.
5. Server Groups
Finally, we come to a completely new feature, which is planned for the end of August 2016. The new feature allows you to assign policies to entire server groups. This eliminates the need to assign policies to each server individually, and allows you to assign policies to entire groups of servers in the Sophos Central user interface. Setup is done easily from the Sophos Central user interface.
Please note that the renaming of “Sophos Cloud” to “Sophos Central” will soon bring some new names to our online shop. We will replace all products with “Cloud” in the name, by “Central”.
Update: The name changes in our shop from “Cloud” to “Central” were made on September 20, 2016. All Sophos Central products are now available here.