smartin's blog

On Wednesday, October 14th, a new vulnerability (CVE-2014-3566) was announced in the SSLv3 protocol.

On Wednesday, September 24th, a new vulnerability (CVE-2014-6271) was announced in the widely used GNU Bourne Again shell and command language interpreter (aka Bash), which is the default shell for Red Hat Enterprise Linux, among others.

On Thursday, June 5th, a new OpenSSL vulnerability (CCS Injection Vulnerability) was announced.  After its announcement, we reviewed the severity and impact to Globus services, partner services and users. Soon thereafter, we posted details in our support forum, with continuing updates as we learn more. Overall, our assessment for the severity of the impact for this issue is low. The forum post does include

I can't tell you how good it feels to have GT 5.2.0 officially announced!! Well, actually, I can and I'm going to :-)

We've been operating the Globus Online file transfer service for 10 months now, and along the way we've learned a thing or two about handling data for scientists.

I am delighted to write this inaugural post for "GO Behind the Scenes" -- our Dev column in the new Globus Online (GO) blog. Entries could come from any member of the GO development team.  We're looking to provide a small window into what we do to make GO ..er..uh.. go! This one comes from Stuart Martin, the GO software development manager for the backend.  (The backend is the engine that takes the file transfer requests and moves the bytes from point A to point B.)   Since we like to plan big, we run all of GO on Amazon's EC2.  This way, when the time comes, we will be able to run instances worldwide.