I have installed Sophos Antivirus for Linux on a Debian machine.
Using it for on demand scanning of email messages, it works when I push EICAR test virus through it.
I have a large collection of virus infected messages, when testing those it only detects about 50% of them.
I have confirmed that the system is running the latest definition files, following these instructions.
One could argue that Sophos does not know about the specific viruses yet, especially if they are new.
HOWEVER, if I test the messages with VirusTotal their system will detect the virus infection and it states that found by Sophos AV.
If I have the latest data files, how can I get my install to operate as well as VirusTotal is performing?
I have confirmed that I have the system set to scan compressed files, what else can I do?
This thread was automatically locked due to age.
