Sophos Protection for Linux

Version 1.1.8 New

New features

We've added Event Journals to record AV detections to make them available in Live Discover and Sophos XDR.

New components

Sophos Linux Event Journaler is version 1.0.0.
Sophos Linux Runtime Detection Plugin is version 4.9.0.

Updated components

Sophos Linux Base has been updated to 1.1.8.
Sophos Live Discover Plugin has been updated to 1.1.4.
Sophos Linux Live Response has been updated to 1.5.0.
Server Protection has been updated to 1.0.4.

Components

Components and their version numbers by release. The second column contains the latest release.
Sophos Protection for Linux	1.1.8 November 2021	1.1.7.1 August 2021	1.1.7 July 2021	1.1.6 June 2021	1.1.5 April 2021	1.1.4 December 2020	1.1.3 August 2020	1.1.1 June 2020
Sophos Linux Base	1.1.8	1.1.7	1.1.7	1.1.6	1.1.5	1.1.4	1.1.3	1.1.1
Sophos Live Discover plugin	1.1.4	1.1.2	1.1.2	1.1.2	1.1.1	1.1.0	1.0.2	1.0.1
Sophos Linux Live Response	1.5.0	1.2.2	1.2.2	1.2.2	1.2.2	1.2.1	1.2.0
Server Protection	1.0.4	1.0.3	1.0.2
Sophos Linux Event Journaler	1.0.0
Sophos Linux Runtime Detection Plugin	4.9.0

Version 1.1.7.1

Updated components

Server Protection has been updated to 1.0.3.

Version 1.1.7

New features

We've added Server Protection, an on-demand antivirus scanner. This uses a threat detection engine, including machine learning models, alongside signature-based protection.

Version 1.1.6

New features

You can assign products using the command line at install time if you use thin installer version 1.1.1 and later versions.

Version 1.1.5

New features

This version of Sophos Protection for Linux supports the XDR Data Lake capabilities in Sophos Central. Additionally, this version supports installing directly to a Sophos Central Group if you use thin installer version 1.0.8 and later versions.

Updated components

Sophos Linux Base has been updated to 1.1.5.
Sophos Live Discover plugin has been been updated to 1.1.1.
Sophos Linux Live Response has been updated to 1.2.2.

Version 1.1.4

Updated components

Sophos Linux Base has been updated to 1.1.4.
Sophos Live Discover plugin has been been updated to 1.1.0.
Sophos Linux Live Response has been updated to 1.2.1.

Version 1.1.3

New features

This version of Sophos Protection for Linux supports the EDR 3 capabilities in Sophos Central. Live Response allows admins to remotely connect to devices and get access to a command-line interface. This allows them to perform detailed investigations or to take prompt action to contain or remediate a threat.

Version 1.1.1

New features

This version of Sophos Protection for Linux supports the EDR 3 capabilities in Sophos Central. Live Discover allows admins to use osquery to search the device data across their estate to answer almost any question they can think of.

Note

You can't use the Sophos Protection for Linux agent in conjunction with Sophos Anti-Virus for Linux.

System requirements

Free disk space: 1.5 GB
Memory: 2 GB
System type: x64
Systemd supported and running
Kernel that supports glibc 2.17 or later
Bash is installed

Supported platforms

The following platforms and point releases have been tested:

Amazon Linux 2
CentOS 7
CentOS 8
CentOS Minimal
Centos Stream
RHEL 7
RHEL 8
Ubuntu 18.04 (LTS)
Ubuntu 20.04 (LTS)
Ubuntu Minimal

Support

You can find technical support for Sophos products in any of these ways:

Visit Sophos Community at Sophos community and search for other users who are experiencing the same problem.
Visit Sophos support at Sophos support.
Find how-to, configuration and troubleshooting videos at Sophos Techvids video hub.

Legal notices

Copyright © 2021 Sophos Limited. All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise unless you are either a valid licensee where the documentation can be reproduced in accordance with the license terms or you otherwise have the prior permission in writing of the copyright owner.

Sophos and Sophos Anti-Virus are registered trademarks of Sophos Limited and Sophos Group. All other product and company names mentioned are trademarks or registered trademarks of their respective owners.