Jump to content

Notifications - Message content - missing "Object URI" variable


Recommended Posts


We're migrating our on-prem ESET Protect console functionality to the ESET PROTECT cloud console. In recreating our Malware alert notifications I've noticed that the "Object URI" variable (${object_uri}) is not available. It is in our on-prem version. Refer screen grabs of available fields below.

This is an important piece of information to include in the notification so it seems strange that it wouldn't be included in the cloud version.

Variables available on-prem:

Variables available in cloud:

Edited by CraigF
Minor typo correction.
Link to comment
Share on other sites

  • ESET Staff

This type of information was intentionally excluded, as there was a potential risk that users would receive HTTP link with potentially malicious content in a email verified and signed by ESET itself.

As of now, there are plans to enable this field also in cloud notifications, but currently without exact ETA.

Link to comment
Share on other sites

Thanks for the status update, Martin.

I can understand the logic for not including this field in the default notification message, but it doesn't make sense to not make it an available field when it is available in the on-premise version. I also expect that these notifications would generally be configured to go to administrators, not end users. Receiving a notification that doesn't identify what triggered it is not particularly helpful to an administrator.

I hope the dev team can make the availability of this field a priority.

Link to comment
Share on other sites

  • ESET Staff

Many thanks for your suggestion. I absolutely agree that this would be useful, and we have discussed adding it many times to the cloud version as well. The main difference is that in the on-premises version, the customer configures their own SMTP server and they are responsible for their reputation. In the cloud version, ESET is responsible for the messaging service and servers. There can be some issues when customers have set up object URIs for phishing attempts. In this case, the email actually contains a phishing link and our messaging service can be placed on blacklists by specific email hosting providers, which can cause problems for many other customers.

However, there is always a solution, but it might be more complex than it seems at first glance. We will try to address this improvement and find a solution to make messages more usable with this information.

Link to comment
Share on other sites

Thanks for explaining that, igi008, I see the challenge now. Perhaps the URLs could be deconstructed in some fashion so they wouldn't be perceived as a web link. I look forward to seeing the solution you come up with.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...