This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SAV for Linux Free Edition is Discontinued

Hey Folks,

Just as the subject says... this is not a question but apparently a true statement of fact, at least as far as Sophos engineers are concerned.

For more information on how I learned this, keep reading...

So I was following these links...

Free Tools (click "Sophos Antivirus for Linux Free Edition" at the bottom) -> Antivirus for Linux (click "Get Started" at the top right) -> Antivirus for Linux - Download

You'll then get a form to fill in, but filling it in results in this message...

" This product is no longer available for trial. "

Which doesn't even make sense, it's not a trial -- it's a free tool.

So I started a support case (#9982729 for any Sophos staff wondering) asking if it was discontinued or if this was in error.

Presumably due to the confusion of this being about a free product, it escalated directly to a "Global Escalations Engineer" who immediately began to ask questions of their product management and marketing teams.  Later on he got back to me with this...

" You may or may not be aware that a number of longstanding and legacy products have been recently had their End of Life set.
This house cleaning has been to enable us to focus more of our resources on the newer products and those that are inline with changing technology.
All our supported products are continuing to be supported in keeping with any changes to End of life,

The SAV for Linux "free" offering is a area which was marked for removal. Unfortunately the team responsible for the product availability completed their task before the team responsible for updating all the web-pages and documentation that reference SAV for Linux free version. This was an oversight which we are trying to catch up with. "

I asked if a link to their latest sav-linux-free-9.tgz file could be provided anyway (e.g. for preservation purposes), but instead that question was sidestepped and instead he said their Product Manager was willing to make it available to paying customers and they are curious as to why a paying customers would need it (e.g. their thoughts was maybe it was for... " home use or other applications outside of their licensed infrastructure ").

So I replied stating that I was still able to perform new installations of the Free SAV for Linux using a backed up copy of sav-linux-free-9.tgz that I'd kept, which installs...

SAV: 9.15.1, Engine: 3.74.2, Data: 5.55

But curiously when I ran /opt/sophos-av/bin/savupdate it updated just fine to the below versions using the normal Sophos update servers.  The update server was accessed using the default username of FAVLeSED5Q5MM and password of e7rtzqqzezt which is kept in the savd.cfg file, I expect it is the same for all Free SAV for Linux users (as even Google shows a few mentions of those credentials on this forum).

SAV: 9.16.2, Engine: 3.79.0, Data: 5.76

To which I was told that he is not expecting access to the update server to be disabled in the short term, but at the same time he stated there would be no further product updates for the free release.  Which is a completely mixed message if you ask me, especially as he goes on to say the standalone version (I'm presuming is where no Enterprise Console or Sophos Central is used) wouldn't be discontinued until 20th July 2023 and the next version is due out in October 2020.

I lastly pointed out that there is a possibly, that a culture may be created where the sav-linux-free-9.tgz file is shared online (which adds a nice ironic risk of introducing malware) as people will just work out that they can still receive updates to the latest versions after that.  This surely completely defeats the point of why Sophos had this offering, to attract people to its website for this file and see what products they sell etc...

I got no reply really to that.  I also asked if the unlicensed / free tier of the Home edition for Windows was about to be axed too (given their original statement about " being more focussed " when it came to announcing the end of life of many products)... to which all I got told was... " I can not comment on whether any windows products will not be affected but doubt the free Sophos home will be withdrawn ".

So it sounds like Sophos don't give a crap about Linux users any more.

Hopefully someone, somehow, somewhere has got their wires crossed (and would have had to have been multiple times, this case went on for a good 11 messages).

But it certainly looks bad, and it's not going to please developers or engineers who use Linux at home who might be (or one day become) purchase decision makers or influencers when it comes to network products.

However it does appear that SAV for Linux isn't the only option now if you want on-access (real time) scanning for free.


This thread was automatically locked due to age.
  • Hello Lantizia,

    thanks for comprehensive post. This has come up in the Server Protection forum two weeks ago. Oh, BTW, I'm not Sophos.

    Fact is, the on-premise products are EOS and will be EOL in 2023. With them the stand-alone (SA) versions will disappear. There was never a free Windows version, the free Mac version has been replaced with Sophos Home which is free for three devices (Windows or Mac) or whatever the current limit is.
    In Sophos Central the Linux version is only available for servers (any Linux machine is considered a server) and Central never had the concept of SA versions.

    scanning for free
    TANSTAAFL. Whatever the motives behind the decision to withdraw the free version Sophos and/or their customers have to bear the costs. Bear in mind that a company normally neither can accept donations nor recover their costs by placing ads on their website or product (hm, a free toilet bowl plastered with advertising labels ...?). 

    As for the updating credentials for the free version. The installer requests them on the fly, there was never a need to search for them. Any set created this way works - until Sophos withdraws it from the backend. You suggest that Sophos should withdraw all free credentials immediately to prevent dissemination of a .tar.gz bundled with malware or other undesirable software?


  • QC,

    Sure there's Sophos Home that allows limited functionality (likely fine for many people, the real-time feature particularly) for free, but it's just for Windows and Mac.  It'd be a bit better if when SAV for Linux (Free Edition) is properly discontinued (i.e. announced as such)... they added Linux support to Sophos Home... but I doubt they will.

    When it comes to the free edition update credentials, I never said I needed to "search for them"... it was just curiosity as to how it worked.  I'm not proposing they stop these credentials from working, just pointing out that a by-product of them continuing to work... might mean people still try to do fresh installs of Free SAV for Linux and thus would need to obtain the .tar.gz somehow if they didn't keep a copy.

    EOS (either Sale or Support) and EOL are two very different matters.  Since the Free Edition of SAV for Linux never had any official support (i.e. with a SLA), nor was on sale... EOS shouldn't matter.  The question then remains of if it should be EOL.  Given it is the same product as the standalone SAV for Linux v9 (but with a free license), and the standalone version is going to be around until 2023... then surely it's no difference to Sophos to just keep it around?

    You say TANSTAAFL (had to look that one up), sure... but the same can be said to Sophos as well.  You don't magic up customers... you bring them on side.  I can imagine Free SAV for Linux was intended (and likely succeeded... to what extent is unknown... but it certainly wouldn't have had the opposite impact) to spread awareness of Sophos and their products to Linux users... who, for the most part, are a fairly technically minded lot and more likely to be working in positions where their opinion might be sought or required when deciding on network products.

    Ultimately... I wouldn't mind if Sophos shut down this "Free Tools" section of the forum (or just made it very clear it's community members only, no staff), but then continued to offer the .tar.gz and allow the free updates to continue.  Zero support for zero payment... but ultimately if people would like support, they can pay for it!  Obviously if the issue is just... " I can't get the .tar.gz file, the form is broken! " and there is nothing on the Sophos website that explain it... then that's not a product support case, that's just a error for the webmaster to fix!


  • FormerMember
    0 FormerMember over 1 year ago in reply to Lantizia

    Hi ,


    I guess the confusion (for the most part) stems from the dates on when the product reached end of sale/support (or whatever the S in EOS is). You are probably correct in saying that it should not apply to the free version since it's neither for sale nor do users receive technical support.


    I've seen the thread in the Server protection forum mentioned by along with another thread I found under Free tools and both were addressed by . So to end the confusion (and the question), let's settle with the free version is simply discontinued by Sophos. If Linux users like us want to continue using Sophos Antivirus for Linux, then the only way to go is to pay for a license.


    The only other choices we have left in terms of free are (probably just) either Comodo or ClamAV. Unfortunately, an old test done by AV Test puts Comodo to nearly useless with very low detection rates of Linux threats. On the other hand, ClamAV appears to be a better option, but only if stacked against Comodo. Either we pay (Sophos) or go completely open source (with ClamAV). After all, some security is better than none at all.


    It's very unfortunate to learn about this development, but it's beyond our control. It's just a fact of life when it comes to proprietary freeware: it can be taken away anytime. After all, Sophos is a corporation and not a charitable foundation.

  • I can't find any non-free standalone SOPHOS product for linux once the free version goes EOL in 2023.  Is there one, and if so what's it called?

  • FormerMember
    0 FormerMember over 1 year ago in reply to pastim


    So far, I have not heard about Sophos changing its mind, so there is none. You can read the exact words of their community support engineers through the threads I have quoted as links in my last response.


    First they abandon Linux users. Next they abandon Android Go edition users. Don't be surprised if more of their offerings will disappear in the coming months. Simply put, Sophos no longer cares.

  • Pretty sure the point I was trying to make in my original post... is that Sophos consider the free edition for Linux to be EOL... 


    Not in 2023 :) 

    If it does continue to work (or update) for longer, that's a happy co-incidence that you shouldn't be relying on and they can pull the plug at any time.

  • Hi all,

    The free Linux product will continue to receive updates; and will do so for the foreseeable future. The removal of the download for the free edition was inline with the EoS of our other products. 



  • Is there a non-free version that will continue past 2023?  I can't find it.

  • The product in Sophos Central will continue beyond July 2023

  • Forgive me for being ignorant, but what does that mean?  Is there, or is there not, any standalone version that will continue?  What does Sophos Central entail? I've looked, but am struggling to understand.  It seems to me that Sophos really don't want non-business users.  There are pretty pictures of screens, but I can't work out what runs where.  If I have a linux laptop, and carry it around, can it have an anti-virus system on it, or does it need to be on a network all the time?  

    I am, as the above no doubt illustrates, baffled and dim.

  • You asked if there was a non-free product that will be available after 2023; and there will be, the Linux product in Sophos Central. 

    There is no standalone version that will continue, no. For non-business users looking for a Linux product, there isn't anything that Sophos offers now that the free edition has been removed for download. Existing users of the free edition can continue to use it until we stop providing updates at a date yet to be confirmed. 



  • Stephen,

    Thanks.  I still don't understand what Sophos Central really entails, but you say it would not suit my needs since I am not a business (1 desktop, 1 server, and 1 laptop).  I guess I'll have to accept that.

    According to your website at, SAV Sophos Anti Virus is EOL in July 2023.  Is that not correct, or does it not apply to the free version as well?

    Will you tell us, the users, when updates are withdrawn?

Reply Children
No Data