Author Archives: T.Rob

WMQ free tools updated

Posted on October 29, 2009 by T.Rob

Michael Dag at MQSystems has updated his WMQ 1-Page Quick Reference cards.  Go to his Links page and look at the top two entries.  While you are there, check out the Solutions page where you can find out abour MQ … Continue reading

Posted in IBMMQ, News | Leave a comment

Avoiding insider threat

Posted on October 5, 2009 by T.Rob

Passing along this article from Adam Bosnian of Cyber-Ark Software: Practical advice on avoiding the insider threat.  The whole article is worth reading but one item stood out: Best Practice #4: Secure Embedded Application Accounts Up to 80 percent of … Continue reading

Posted in General | 2 Comments

Deep Queue #13: Unlucky number thirteen

Posted on August 28, 2009 by T.Rob

After a month unplanned hiatus, The Deep Queue is back.  This month we are talking about high availability, which is obviously something The Deep Queue lacks.  This may not seem like a security topic at first glance but to my … Continue reading

Posted in DeepQueue, IBMMQ, Podcast, WMQ Security | Leave a comment

WebSphere MQ – Coming soon to an audit near you!

Posted on July 4, 2009 by T.Rob

The June 29 episode of The Deep Queue is finally up!  Sorry about the delay, I was on an engagement last week that had me staying over the weekend in Boston to perform a production implementation on Saturday.  Although I’ve … Continue reading

Posted in DeepQueue, Podcast, WMQ Security | Tagged , , , , , , , , , | Leave a comment

New WMQ Channel vulnerability and interim fix announced

Posted on June 5, 2009 by T.Rob

The IBM Internet Security Systems XForce team recently announced a buffer overflow vulnerability in WebSphere MQ client channels.  According to the release, the vulnerability includes the possibility of remotely executing arbitrary code or “causing the application to crash.”  It is … Continue reading

Posted in IBMMQ, News, WMQ Security | Tagged , , , , | Leave a comment

Deep Queue #11: Security breaches are not news?

Posted on May 25, 2009 by T.Rob

The subject of the UC Berkeley data breach was discussed on the May 15th Security Squad podcast.  The thing that struck me was that the breach itself was not the topic of conversation but rather the debate was about whether … Continue reading

Posted in DeepQueue, IBMMQ, Podcast, WMQ Security | Tagged , , , , , , | Leave a comment

WANTED DEAD OR ALIVE: WMQ Security exits

Posted on May 15, 2009 by T.Rob

As you know, there are some security functions in WebSphere MQ that require an exit.  By now everyone should be familiar with BlockIP2, the well known channel security exit.  But there are a couple of other requirements that a channel … Continue reading

Posted in IBMMQ, WMQ Security | Tagged , , , , , | 2 Comments

Wrapping up IMPACT 2009

Posted on May 8, 2009 by T.Rob

Well, this is the last day of IMPACT. It’s always lightly attended as many folks take Friday as a travel day. I have one more session this morning though. It’s the WMQ ESE introduction. Overall the WMQ security sessions were … Continue reading

Posted in Events, General, IBMMQ, News | Tagged , , , , , , , , | Leave a comment

The Deep Queue – Episode #10: Cash in on mortgaged risk!

Posted on May 2, 2009 by T.Rob

No, that’s not mortgage risk.  Someone’s already done that and look where it got us.  No,I’m talking about mortgaged risk – the act of saving time or money by accepting risk that is hard to measure but easy to hide … Continue reading

Posted in DeepQueue, Events, IBMMQ, Podcast, WMQ Security | Tagged , , , , , , | Leave a comment

Schedule for IMPACT

Posted on April 28, 2009 by T.Rob

This post is really more for me than anyone else.  I’ll be at IMPACT 2009 next week and need a handy place to track my schedule. Sunday:    16:00 – 17:00 Premium Support Welcome Reception Venetian’s Orchid Restaurant Monday:    11:00 – … Continue reading

Posted in Errata, Events, News | Tagged , , , | Leave a comment