"Wanna" ransomware outbreak. Please see this Sophos article sophos.com/kb/126733 for advice on how to protect your organization. Immediate action recommended.
This article addresses some of the frequently asked questions regarding subscriptions and product versions.
Applies to the following Sophos product(s) and version(s) Enterprise ConsoleSophos Endpoint Security and Control
There are several reasons for the change, we feel that we should, as a security company, be keeping customers as up to date as possible with the latest protection. If there are many choices of software versions available (some very old) then this task is made more difficult for both the customer and for Sophos, since customers can easily make inappropriate software selections or get “left behind” on older versions. The new lifecycle scheme brings simplicity, and with it less chance of falling behind on older versions of our endpoint software.
Also, maintaining many older versions within Sophos takes a lot of resource, this resource could be better employed developing software that provides better protection rather than testing and developing older versions.
All. The change was introduced in June 2013 and applies to all versions of the console. The biggest changes will be seen by new customers (from June 2013) using SEC 5.2.1 (and above) where they will only see the new subscriptions, and by default will not have access to any fixed versions. Over time all subscriptions will move to the new model, SAV 10.0.x versions were the last that follow the old scheme, thus, all versions of SEC, and all customers, will be using the new lifecycle by the beginning of 2015 following the retirement of SAV 10.0.x.
From 10.2 onwards. SAV 10.0.x was the last version that will follow the old lifecycle, and retired at the end of December 2014.
Absolutely not! The software delivered via the Preview subscription is fully tested production quality code. The reason it is in a separate subscription is to allow you to see what changes will be delivered into the Recommended and other subscriptions over time. We suggest that if you are having issues with a Recommended subscription try the Preview subscription to see if it resolves any issues. We always ensure that the Preview and Recommended subscriptions overlap so that you can move back to Recommended when you are ready.
A major upgrade would be when we introduce a version of SAV that replaces 10.x.x. Minor updates are updates that introduce new features or make other more minor changes to the software. Since we are releasing changes more frequently we will have more minor upgrades happening. Previously we would have “batched up” the many minor upgrades and made them into a major upgrade. We do not currently foresee any need for a major upgrade as all changes are being planned and released incrementally.
This will depend on your own internal systems and processes, however, we allow for 3 months of testing of minor upgrade changes if you use the Extended and Previous Extended subscriptions. This period should be more than enough to allow for regression testing against your existing systems and any required testing of new features, as well as rolling out the software. In the event of a major upgrade, we will give 12 months’ notice of the retirement of the outgoing major version together with a 6 month overlap of versions to allow for more significant testing and evaluation.
This will depend on the version of SEC you are using. From SEC 5.2.1 onwards fixed versions will by default be hidden and there is no option to unselect automatic upgrades of fixed versions, even with Platinum support in place. This is because as soon as Sophos retires a fixed version it will no longer receive security updates, which is against our primary goal of best protection. Older versions of SEC will continue to see fixed versions. Information around the available fixed versions can be found in article 121139.
If only a small amount of testing is required you could use Previous Recommended which will normally lag behind Recommended by about 1 month. If you require more extensive testing over a longer time frame we recommend subscribing to a fixed version
We will not provide any notification of automatic upgrades for the Preview subscription. For Recommended and Extended we will give as much notice as possible. Our release calendar shows the next 6 months or so of releases, so you should pay attention to this and choose the appropriate subscriptions based on the change profile of that subscription and your environment. We will also notify of more major upgrades in Recommended and Extended via the console messaging system, emails and support notifications.
We feel that the rate of change would be too great if we were to move all versions from Preview to Recommended. Also, we want to provide a period of overlap between Preview and Recommend several times each year to allow customers to move between these two subscriptions without having to downgrade. This may be necessary when a new feature is needed or we introduce a fix initially in Preview.
The release calendar will inform you which versions are destined for which subscriptions.
This information is published in the Calendar of release dates.
It would be best to use the fixed versions to accommodate change freezes such as this.
Complexity is indeed the enemy of security. This is precisely why we have reduced the number of options that a you have to choose between, made all of the available subscriptions more up to date and also given them "use appropriate" names since the versions are no longer as relevant.
Tous les commentaires envoyés sont lus par un membre de notre équipe. En revanche, nous ne répondons pas aux questions techniques spécifiques. Si vous avez besoin d'assistance technique, veuillez poser votre question sur notre communauté. Pour tous produits sous licence, veuillez ouvrir un incident support.