vas's blog

Several users have requested a native command line client to Globus services that can be installed on a local machine and used for simple scripting. We have just released a beta version of a new command line client that you can download and use with the Globus file transfer and sharing service. This is a native Python client application, and is available to all users. Documentation for this beta release is available in our Github repo. We invite you to try the new client and send any questions and feedback to support@globus.org.

We're excited to announce that we're taking GlobusWorld on the road! Over the next few months we will be conducting a series of workshops at university campuses and national facilities around the country.

Globus subscriptions have changed. Based on feedback from, and discussions with, existing subscribers we have moved away from a usage-based model to unlimited-use subscriptions with access to different sets of premium features. This change was motivated primarily by two recurring themes that came up in our conversations:

The certificate used by Globus Connect Personal endpoints to securely connect to Globus expires on August 9, 2016. We released updated packages with new certificates a few weeks ago. If you have not yet updated your Globus Connect Personal installation, you must do so before August 9th so that your endpoint continues to work.

Late last year we deprecated the scp command in the Globus command line interface (CLI), and provided features in the transfer command for parity. In the nine months since it was deprecated, most users have moved to using the transfer command and there is little use of the scp command.

The certificate authority used to issue service certificates for Globus Connect Server installations will expire on August 9, 2016. We have released an updated version of Globus Connect Server that contains the new certificate authority. Please update your installation prior to August 9th for uninterrupted use of your Globus endpoint(s). Click here for instructions on updating your endpoint.

On February 16, 2016 a new critical vulnerability CVE-2015-7547 - "glibc getaddrinfo() stack-based buffer overflow" was announced. We have reviewed the severity and impact to Globus services, partner services and users, and posted details of our findings in a new security bulletin. We recommend corrective action for users who are operating Globus endpoints on Linux systems - please read the security bulletin for further details.

We’re excited to announce changes to the way users access Globus that removes a lot of the “friction” currently associated with signing up and using the service. On February 13th, 2016, we will be upgrading the Globus authentication and authorization mechanisms so that users can access the service with their institutional username and password. This provides a familiar login experience and no longer requires users to create a separate Globus username and password just to use the service.

Recently, a new vulnerability was discovered in the Sparkle Updater framework on Mac OS, that is used by Globus Connect Personal to check for, and install, updates. All Mac users who have Globus Connect Personal installed should immediately update to the latest version so they are no longer vulnerable.

Note: This downtime was previously scheduled for January 30, 2016 and is now scheduled for February 13, 2016. We're delaying our release plans at the request of customers who would like additional time to test their systems' integration with new Globus functionality.