Sophos for Mac
Is anyone using Sophos on their Mac network, and using the Update Manager on a server to bring down the updates onto the network update clients from a share?
I've set our server to download the updates, then the client to update from the server. However for this to happen Staff, and technically students, have to have read and write permissions to the network share on the server that the updates are downloaded to, therefore they could potentially delete or damage any of these files. And, to me, there isn't an obvious way round this. If they are set to read only, the update on the client fails.
Also, now having problems getting updates to download to the server. It worked last week, came in today and it's stopped working. Not happy with Sophos so far.
Has anyone managed to get this working and secure?
Or using another Anti Virus on their mac network?
We use sophos on our macs, but just the standalone version.
With regard to your problem, you could have the 'real' AV files copied to another location (every 30 minutes?) which you could then share so the R/W privs would never permanently stop AV updates occuring.
Not quite sure what you mean, could you explain abit more?
Originally Posted by nicklec
If you're installing Sophos from the Enterprise Console, by highlighting a group of machines you then specify a username and password to install Sophos. This shouldn't require the end user to have write permissions, only administrators. This is deploying to Windows machines.
I had a look at the InterChk share on one of my servers and it's just authenticated users who have read/execute access rights. Do Sophos specify that deploying to Macs requires read/write access for all users?
A workaround (to your original statement) would be have say /sophosdefs where the server app downloads your definition files to, then setup a task to 'sync' that directory to /sophosshare - and then share that location with whatever privs - if someone was to connect to that share and delete anything, then they would be restored as soon as the sync runs again.
Originally Posted by rolfea
I know what you mean, this should work.
I'll set the permission as read/write to everyone and see how that goes.
Have you had any problems with the proxy settings, or general updating from the internet on the central server point? this is either from the update manager or the Sophos Anti Virus.
Still can't get this to work for some reason, just says it can't find the server.
For us (LGfL) we can access the update server from the LGfL WAN with no credentials, from outside the LGfL WAN you need a user to update defs - don't know if that is relevant to you but 'inside' the WAN uses a proxy server and 'outside' doesn't. Both work fine.