The Deep Queue – Episode #7: Reducing your attack surface

This installment of The Deep Queue is about improving security by reducing the number of attack vectors that are exposed.  Given two systems with equivalent functionality the one with more exposed attack vectors is said to have a “larger attack surface”.  As I explain in the podcast, having a smaller attack surface doesn’t automatically result in a more secure system, but it sure helps.  There’s a possibility that having a smaller attack surface makes you more likely to be the victim of a hit-and-run driver but you’ll have to listen to the podcast to understand why.

This episode also contains an installment of Random MQ Stuff.  Links are below.

Subscribe:  Deep Queue RSS feed

Links for this episode:

Minimize attack surface area (OWASP) –
http://www.owasp.org/index.php/Minimize_attack_surface_area

WebSphere MQ Fix Pack 7.0.0.1 – http://is.gd/i1Da

APAR’s in 7.0.0.1 cited in this podcast: IC56408, IC58577, IC58797, IZ17158, IZ18954, IZ27491, IZ27588, IZ28844

SupportPac MS03 – http://is.gd/i1Da

IBM Consumability Surveys
Managing WebSphere Products – http://is.gd/i1Da
WebSphere MQ API Exerciser Survey – http://is.gd/i1GL

This entry was posted in DeepQueue, Podcast, WMQ, WMQ Security and tagged , , , , , , , . Bookmark the permalink.

Leave a Reply