Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 179 replies
  • Subscribers 6 subscribers
  • Views 2223665 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Antivirus for Mac and OS X 10.8 "Mountain Lion"

RichBaldry

Earlier today, Apple announced that a new version of OS X, codenamed Mountain Lion, would be released in July 2012.

Sophos has been actively participating in the pre-release developer programs for this new OS version. While the product works well on the new platform, we have found that there are a few changes required to support Mountain Lion fully. These changes will be implemented in the July monthly release of Sophos Antivirus for Mac, which will be v8.0.5.

We fully expect this new version to be available in time for the release of Mountain Lion.

The most significant change is that the installer for the product will be signed by Apple. This will ensure compliance with the new Gatekeeper functionality, which requires that the digital signature for any software downloaded from the Internet is based on a certificate from Apple..

Unfortunately this process is not compatible with version 10.4 of OS X. Starting with v8.0.5 of Sophos Antivirus for Mac Home Edition it will only be possible to perform a new installation on OS X 10.5 and above. Customers currently running our product on 10.4 will continue to receive updates and upgrades as usual via the AutoUpdate process.

This will not affect automated updates to existing installations.

There are no plans to make v7.x of Sophos Antivirus for Mac compatible with Mountain Lion. Home Edition users currently running v7.x will be automatically upgraded to v8.x during the month of July.

Thanks for using Sophos Antivirus for Mac Home Edition!

Richard Baldry

Product Manager

P.S. Please watch this space for further announcements as the launch of Mountain Lion gets closer...

:1007619


This thread was automatically locked due to age.
  • 0

    It didnt say and there was nothing to indicate it was trying to do anything. I just woke up my laptop his morning and that was pretty much verbatim the error message on the screen. "Sophos has stopped due to an Error." I tried checking logs but wasnt sure where to look. Can you tell me which logs may reveal more information on the error? The shield icon had gone grey. It had the usual S in the middle, but looking at it now it just has a cross in the middle. It appears I am running 8.0.12C so the update seems to have happened.

    I when into the Apple system log and filtered for Sophos. Here is a pastebin of the last two days... http://pastebin.com/raw.php?i=iikXV6Ei

    :1011812
  • 0

    Hi Kevin,

    Sounds like the on-access scanner has stopped. Some things to check:

    1. any errors in the Sophos Anti-Virus.log file? Its located in /Library/Logs.

    2. is the Intercheck process running?

    3. is the SophosAntiVirus process running?

    There have been sporadic reports of a third party installer changing permissions on the directory /Library/LaunchDaemons. That directory should be owned by root, group wheel.

    :1011816
  • 0

    1. Pastebin from this morning http://pastebin.com/raw.php?i=YmSwf9Dv

    2. Not sure, you can check ~ http://pastebin.com/raw.php?i=nUcU3tmA

    3. See above. 

    I don't know the process names.

    Regards

    :1011822
  • 0

    Did you guys do something because 30 mins ago it fixed itself.... as you can see from the update everything came back online after it.

    Pastbin of Sophos log http://pastebin.com/raw.php?i=Cmf7q5ji

    Regards

    :1011824
  • 0

    Hi Kevin,

    Nope, there was no special release made today. Earlier this week we released 8.0.12 and that update should have already been available to your endpoint for download, verify and install. Your logs indicate there was a verification error on the update process. It appears to have resolved itself. Without tracing the data along the network between your endpoint and our publishing servers, its hard to know where things might have gone wrong. Any web cache between you and the internet?

    :1011828
  • 0

    I hear what you are saying but a failed update should not be a cause for the entire product to go offline. The only previous update was when I first installed it a few days before, I specifically told it to update.

    :1011838
  • 0

    Hi Kevin,

    I definitely agree with you, and today the product is tolerant of download and verification failures. So this wasn't intended to explain the situation.

    :1011850
  • 0
    Well if there is anything I can do, including a remove/install to test it again for you guys let me know.

    Regards
    :1011852
  • 0

    On access scanning has stoped working and I can't re-enable it form the preferences. Have tried updating the software but that doesn;t fix it. It appears form the logs it was working 2 hours ago. I'm on version 8.0.12c

    com.sophos.intercheck: zbot-eiu.ide
    com.sophos.intercheck: dloa-drs.ide
    com.sophos.intercheck: zbot-eiw.ide
    com.sophos.intercheck: vb-ahn.ide
    com.sophos.intercheck:
    com.sophos.intercheck: Info: On-access scanner started at 08:02 on 26 March 2013
    com.sophos.intercheck:
    com.sophos.autoupdate: Info: Checked primary server at 08:02 on 26 March 2013
    com.sophos.autoupdate: Sophos Anti-Virus was updated
    com.sophos.autoupdate:
    com.sophos.autoupdate: Updating catalogue information at 10:00:13 26 March 2013
    com.sophos.autoupdate: Catalogue updated at 10:00:14 26 March 2013
    com.sophos.autoupdate: Download started at 10:00:14 26 March 2013
    com.sophos.autoupdate: Download completed at 10:00:21 26 March 2013
    com.sophos.autoupdate: Update started at 10:00:21 26 March 2013
    com.sophos.autoupdate: Info: Checked primary server at 10:00 on 26 March 2013
    com.sophos.autoupdate: Sophos Anti-Virus was updated 

    :1011856
  • 0

    Hi robingj,

    Can you post the output of the following commands? You'll need to use Terminal. This will be useful to diagnose and/or replicate in our lab.

         ps -e | grep InterCheck

         ls -la /var/run | grep sophos

         ls -la /Library/Sophos\ Anti-Virus

         ls -la /Library/LaunchDaemons

         uname -a

    Note that "uname" will print your hostname along with the OS version details. Feel free to edit that part of the string, I'm much more interested in the version info. If you are concerned about sharing this information with the general public, feel free to email it to me directly.

    :1011860