The Sophos Community will be offline for scheduled maintenance this Saturday, May 27th, at 13:00 UTC for approximately 1 hour. Apologies for any inconvenience caused.
"Wanna" ransomware outbreak. Please see this Sophos article sophos.com/kb/126733 for advice on how to protect your organization. Immediate action recommended.
Under normal circumstances you should run Sophos Anti-Virus for Linux version 6+ with the default settings.
It is best to avoid unnecessary scanning because the more items you check, particularly with on-access scanning, the more system resources will be taken up by scanning. This could, for example, cause high CPU usage when starting up.
If you need a non-default scanning regime the following settings are recommended.
On-access scanning of archived files
On-access scanning of archived files can be useful where a server is checking files before forwarding them to client computers, e.g. as part of through traffic. Normally you should not use on-access scanning of archives on a workstation nor should it be part of a standard network setup for the following reasons:
Preferred methods of scanning archived files
Sophos scanning on Windows compared with Linux
Due to different concepts on the Operating System Layer, the following Sophos scanning settings which are available on Windows are not available on Linux:
Sophos Anti-Virus for Linux will scan all files that are opened and closed, not just executable and infectable files. On Linux this doesn't adversely affect system performance in the way it might on Windows.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. If you need technical support please post a question to our community. Alternatively for licensed products open a support ticket.