This episode of The Deep Queue celebrates the first birthday of the podcast with some discussion of the SSL protocol vulnerability that was recently discovered. Although there has been no announcement with regard to WebSphere MQ, I try to put the whole discussion into a larger context and ask if this is really the thing [...]
Deep Queue #13: The elephant under the bed [23:31m]: Play Now | Play in Popup | Download
Deep Queue #14 transcript: DownloadTags:
After a month unplanned hiatus, The Deep Queue is back. This month we are talking about high availability, which is obviously something The Deep Queue lacks. This may not seem like a security topic at first glance but to my way of thinking it is. There is no perfect security so, no matter how much [...]
Deep Queue #13: Unlucky #13 [28:53m]: Play Now | Play in Popup | Download Deep Queue #13 transcript: DownloadTags:
The subject of the UC Berkeley data breach was discussed on the May 15th Security Squad podcast. The thing that struck me was that the breach itself was not the topic of conversation but rather the debate was about whether the breach was in fact newsworthy. If you are not familiar with it, 160,000 Social [...]
Deep Queue #11: Security breaches are not news? [30:00m]: Play Now | Play in Popup | Download Deep Queue #11: Transcript: DownloadTags: DeepQueue · Podcast · security · WebSphere MQ · WebSphere MQ Security · WMQ · WMQ Security
No, that’s not mortgage risk. Someone’s already done that and look where it got us. No,I’m talking about mortgaged risk – the act of saving time or money by accepting risk that is hard to measure but easy to hide or ignore. The risk is essentially a mortgage on your future. A hidden cost that [...]
Deep Queue #10: Cash in on mortgaged risk! [21:08m]: Play Now | Play in Popup | Download Deep Queue #10: Transcript: DownloadTags: DeepQueue · Events · IBM · IBMIMPACT · Podcast · WebSphere MQ · WMQ Security
This episode of The Deep Queue takes its inspiration from the thousandth time I was asked how to “turn on MQ security”. Yes, that’s right, the thousandth time. At least since I’ve been counting. There were perhaps half a thousand instances before I started keeping track. Unlike being the millionth customer at the local hair [...]
Deep Queue #9: Going postal about security [20:49m]: Play Now | Play in Popup | Download Deep Queue #9: Transcript: DownloadTags: DeepQueue · Podcast · WebSphere MQ · WebSphere MQ Security · WMQ · WMQ Security
This episode of The Deep Queue contains news about the new MSoT stand-alone WMQ Explorer SupportPac, yet another payment processor data breach, updates to some items we’ve covered in the past and breaking news about a WebSphere MQ interim fix that many people will want to take a close look at.
Deep Queue #8: The Good News and the Bad News [28:57m]: Play Now | Play in Popup | Download Deep Queue #8: Transcript: DownloadTags: DeepQueue · IBM · News · Podcast · WebSphere MQ · WebSphere MQ Security · WMQ · WMQ FTE · WMQ Security
This installment of The Deep Queue is about improving security by reducing the number of attack vectors that are exposed. Given two systems with equivalent functionality the one with more exposed attack vectors is said to have a “larger attack surface”. As I explain in the podcast, having a smaller attack surface doesn’t automatically result [...]
Deep Queue #7: Reducing your attack surface [26:05m]: Play Now | Play in Popup | Download Deep Queue #7: Transcript: DownloadTags: DeepQueue · News · Podcast · security · WebSphere MQ · WebSphere MQ Security · WMQ · WMQ Security
In this episode of The Deep Queue I explain why I believe the “trusted internal network” is a myth. Many of the problems that I see on consulting assignments would have been prevented by the same security measures I recommend to protect against malicious attacks. Except the incidents in question are not usually malicious, they [...]
The Deep Queue - Episode #6: The Myth of the Trusted Internal Network [31:20m]: Play Now | Play in Popup | Download Deep Queue Episode #6 Transcript: DownloadTags: commentary · DeepQueue · Podcast · security · WebSphere MQ · WebSphere MQ Security · WMQ · WMQ Security
The Deep Queue Episode #5 is now online. In this episode we cover some WMQ security news and introduce a new segment called Random WMQ Stuff which is pretty much what it sounds like. We also now have an iTunes feed. Please let me know if you have any problems with it. The link to [...]
Deep Queue Episode #5 [30:58m]: Play Now | Play in Popup | Download Deep Queue Episode #5 Transcript: DownloadTags:
WebSphere MQ – Coming soon to an audit near you!
July 4th, 2009 No Comments
The June 29 episode of The Deep Queue is finally up! Sorry about the delay, I was on an engagement last week that had me staying over the weekend in Boston to perform a production implementation on Saturday. Although I’ve got a great recording setup at home, I’m afraid I don’t have decent equipment to [...]
Tags: Admin · Best Practices · commentary · DeepQueue · News · Podcast · security · WebSphere MQ · WMQ · WMQ Security