As part of the version 9.7 release of Sophos Anti-Virus for Linux and Unix we are adding the capability for the product to phone-home some product and platform details. This will allow Sophos to optimize the product and improve our internal testing, with the overall aim being to improve the product and user experience.
The default option on installation is for the product to phone-home. We understand some customers may wish to turn this off, however, Sophos would ask you to leave this option on to allow us to improve the product. Phone-home can be turned off at any time by running the following command:
/opt/sophos-av/bin/savconfig set DisableFeedback true
The product will phone-home once per week on a random interval of 6 days plus a random interval within 2 days, to avoid multiple machines attempting to phone home at the same time. The data sent will be an encrypted file of 1.6 Kb - 2.6 Kb in size to a write-only Sophos secure location, and the raw data will be removed within 3 months. Only aggregated reports will persist for longer than that time period.
This article describes the phone-home functionality. The following sections are covered:
Applies to the following Sophos products and versions Sophos Anti-Virus for LinuxSophos Anti-Virus for Unix
This applies to Sophos Anti-Virus for Linux and Unix version 9.7 and above.
Sophos are gathering data on 5 key areas:
To better understand how our customers are using the features of the product we deliver.
This data will allow us to improve our testing of the product based on actual customer usage, optimize the product, and look to add new features based on how customers are using the existing feature set.
The data will be aggregated into a set of reports which we can use over time to assess the uptake of features, distributions, and new product versions.
No – there is no mechanism in place to allow any trace-back to specific machines or customers. All data is formed into aggregated reports and the raw data is deleted within 3 months of receipt.
No! This data is being used for improving the Linux/Unix products internally to Sophos, only the Sophos development team will have access to this data. All data is encrypted before being sent to Sophos, and only the development team can decrypt and use this data.
Full details of the data being collected are shown in the table below:
Phone home logging is stored on the endpoint in:
A successful log entry looks like this:
2014-08-19 09:59:22.724819: Preparing feedback data 2014-08-19 09:59:23.430645: Using custom feedback host: localhost:8083 2014-08-19 09:59:23.433375: Sending feedback 2014-08-19 09:59:23.433395: trying with noproxy: proxy (from environment) 2014-08-19 09:59:23.437320: Success
No. Feedback attempts happen once per week and in each instance contain only 5 lines. It would take many years for the log to become sizable enough to require rotation.
If you've spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article. This is invaluable to us to ensure that we continually strive to give our customers the best information possible.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.