How to install Sophos Antivirus for Linux (Ubuntu/Debian)

Sophos Antivirus for Linux, a well known free anti-virus solution for Linux to harden the security one step ahead…

Linux, a word to recognize different OS lineage that compels users to think that their systems are completely secure, running on Linux. However, it was, but now something has changed. The Linux running computers also need protection from hackers and different malware that meant to steal information or devasted them, especially the servers.

Although, the Linux is not that much susceptible to malware and security threats as Windows, however, one should be one step ahead in terms of securing systems. As we know they are now lifeline of each and every organization, SMBs and even in homes.

Not only Linux or Windows one should harden their security towards the different vulnerabilities in Mac OS and Android too.

Coming to the main topic which is the installation of Sophos Antivirus for Linux. This is free anti-virus for Linux and also well known. Sophos Antivirus for Linux gives on-demand, and scheduled scanning for Linux servers and desktops. To sure the performance and stability of different Linux distributions.

Sophos antivirus is compatible with Amazon Linux, Amazon Linux 2, CentOS 6/7, Debian 8/9, Novell Open Enterprise Server 2015 SP1, Oracle Linux 6/7, Red Hat Enterprise Linux 6/7, SUSE 11/12/15 and Ubuntu 14/16/18, plus Ubuntu based such as Linux Mint or Elementary OS. These are the latest version of mentioned Linux while writing this article.

Furthermore, Sophos Antivirus can detect and cleans viruses, Trojans, and other malware;  features Live Protection detects, blocks, and removes Windows, Mac, and Android malware; lightweight agent, updates are small—generally under 50 KB. IT is available in two languages English and Japanese and the latest version of Sophos free ANtivirus was 9 during this article. Sophos Anti-Virus for Linux 9 is the only version available for the standalone and Enterprise Console-managed versions.

Sophos Antivirus for Linux system requirements

  • CPU: x86_64
  • Library version: GNU C Library (Glibc) 2.11+
  • Kernel version: Kernel 2.6.32+
  • Disk Space: 1GB
  • RAM: 1 GB

Install Sophos antivirus for Linux on Ubuntu via command line

Seeing the Ubuntu popularity between both Desktops and serves, here we are using Ubuntu to show how to install Sophos Anti-virus.

Steps Glance:

  1. Visit the official website of the Sophos.
  2. Register an account to download the Sophos free Antivirus 9.
  3. The downloaded file will in tar form.
  4. Open the command terminal in Ubuntu. The shortcut keys for that are CTRL+ALT+T.
  5. Switch to the Downloads directory
  6. Extract the contents of the Sophos-free-linux.tgz file
  7. Enter into the Sophos free Antivurs directory.
  8. Run the command to execute the sh installer.
  9. Type ‘Y’ to confirm.
  10. It will ask to choose the updating server for Antivirus, go for Sophos.

Tutorial with screenshot and explanation.

Step 1: Open the browser and visit the Sophos official website to download their free antivirus. Here is the Link.

Step 2: Fill the information and click on Submit.

Sophos antivirus for linux

Step 3: After the downloading, the Sophos free Antivirus, open the command terminal of your Ubuntu system. And type following commands:

Usually, the downloaded files from the browser go into the Downloads folder of the system. So, first, we switch to that. In case, you have the downloaded Sophos file somewhere else then switch to that.



Enter into Downloads directory

cd Downloads

Extract the downloaded compressed Sophos Antivurs Tar file. Type tar -xvzf filename

tar -xvzf sav-linux-free-9.tgz

After extracting, Type ls

Now, switch to Sophos directory

cd sophos-av

Again to see inside the directory type- ls

Run the installer file, for that the command is:

sudo sh ./

When the installer asks to press the Enter button do it.

install Sophos free antivurs on Ubuntu

Step 4: Now use the Space bar to go through the License and Agreement given for Sophos Free Antivirus. In the end, it will ask for your permission to install the Antivirus. Type: Y and press enter button.

Step 5: Now it will ask you to “Where do you want to install Sophos Anti-Virus? [/opt/sophos-av]” Simply press Enter button.

Step 6: In this step, it will ask do you want to enable on-access scanning? It means background and actively scanning the system. Press Y and press Enter button.

Step 7:  Here if you want to make the Sophos Antivirus update automatically from Sophos servers or own server. Simply type s and press Enter key.

Sophos recommends that you configure Sophos Anti-Virus to auto-update.
It can update either from Sophos directly (requiring username/password details) or
from your own server (directory or website (possibly requiring username/password)).

Which type of auto-updating do you want? From Sophos(s)/From own server(o)/None(n) [s]

Step 8: As we are installing the free version of the Antivirus, so we shall go with install the Free version, not the supported one. Type f and then Enter key.

Do you wish to install the Free (f) or Supported (s) version of SAV for Linux? [s]
> f

The Free version of Sophos Anti-Virus for Linux comes with no support.
Forums are available for our free tools at
Do you need a proxy to access Sophos updates? Yes(Y)/No(N) [N]
> N

Step 9: Finally, this free Antivirus has been installed on Linux (Ubuntu) system.

Fetching free update credentials.
Installing Sophos Anti-Virus....
Selecting appropriate kernel support...
When Sophos Anti-Virus starts, it updates itself to try to find a Sophos kernel interface module update. This might cause a significant delay.
Sophos Anti-Virus starts after installation.

Installation completed.
Your computer is now protected by Sophos Anti-Virus

Step 10: To check whether the Sophos Antivirus for Linux is running or not use the below command

sudo /opt/sophos-av/bin/savdstatus


[email protected]:~$ sudo /opt/sophos-av/bin/savdstatus
Sophos Anti-Virus is active and on-access scanning is running
[email protected]:~$ /opt/sophos-av/bin/savdstatus
Sophos Anti-Virus is active

Since the Sophos free Antivurs 9 version, the company has totally removed the Web GUI for the Antivirus, so the user has to manage it form the Command line interface (CLI).

So to run or scan some file the command is savscan. For example, you want to scan all archive files reside on the system the command will be:

savscan file path -archive

To scan filesystem

savscan /home

To scan the whole computer

savscan /

We don’t need root access to run scanning commands accept on demand which is

man savscan filepath

To run the Sophos commands, here are some:

sudo /opt/sophos-av/bin/commands

Replace the command-name with anyone of the below given commands:

        Commands:           What it does?

  • savconfig:               Allows configuration of policies
  • savdcdl:                  Enable/disable on-access scanning. (use enable or disable to turn on/off)
  • savdstatus:            Reports if SAV is running or not
  • savdstatus :           –diagnose Runs an SDU
  • savlog:                    Outputs the contents of the sav.txt log. Use –help to get additional options
  • savscan:                 Manual scanner (CLI)
  • savsetup:               Prompts for setup information (eg: autoupdate)
  • savupdate:             To update antivirus

In case you want to enable or disable the On-access scanning of the Sophos free antivirus, here is the command:

/opt/sophos-av/bin/savdctl enable


/opt/sophos-av/bin/savdctl disable

All Sophos Antivirus for Linux Commands:

Other Useful Resources:

Comments (3)

  1. Bart Burroughs March 1, 2019
    • José Pedro October 3, 2019
  2. MMA October 27, 2019

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.