Category Archives: IBMMQ

Anything related to IBM MQ – operations, administration, development, architecture, security, etc.

Signed C&C messages? What a novel idea!

Posted on January 8, 2009 by T.Rob

I’ve been saying for a while now that Command and Control messages to be signed.  It’s a question of authentication.  When you pass a message to perform an administrative action, what assurance do you have that the message got to … Continue reading

Posted in IBMMQ, News, WMQ Security | Tagged , , , , , , , | Leave a comment

The Deep Queue – Episode #6: The Myth of the Trusted Internal Network

Posted on January 1, 2009 by T.Rob

In this episode of The Deep Queue I explain why I believe the “trusted internal network” is a myth.  Many of the problems that I see on consulting assignments would have been prevented by the same security measures I recommend … Continue reading

Posted in DeepQueue, IBMMQ, Podcast, WMQ Security | Tagged , , , , , , , | 1 Comment

WMQ File Transfer Edition launched

Posted on December 7, 2008 by T.Rob

I’ve been haunting the Vienna MQ list server for long enough to have seen the topic of moving files over MQSeries, and later WebSphere MQ, raise it’s ugly head on many occasions.  I say “ugly” because creating a general-purpose program … Continue reading

Posted in IBMMQ, MQMFT, News | Tagged , , , , | 1 Comment

Mission:Messaging: Migration, failover, and scaling in a WebSphere MQ cluster

Posted on December 2, 2008 by T.Rob

Certain aspects of service orientation are best served using an IBM® WebSphere® MQ cluster. The cluster provides the location independence, run time resolution of names, and concurrency required by SOA applications. For these reasons, adoption of SOA is driving migrations … Continue reading

Posted in General, IBMMQ, Publications | Tagged , , , , | 5 Comments

The Deep Queue – Episode #5: WMQ Security news and Random WMQ Stuff

Posted on December 2, 2008 by T.Rob

The Deep Queue Episode #5 is now online.  In this episode we cover some WMQ security news and introduce a new segment called Random WMQ Stuff which is pretty much what it sounds like.  We also now have an iTunes … Continue reading

Posted in DeepQueue, IBMMQ, Podcast, WMQ Security | Leave a comment

Having fun in Barcelona!

Posted on November 11, 2008 by T.Rob

Well, I made it to Barcelona on Sunday after 20 hours on various planes and in various terminals.  My luggage arrived on Tuesday having seen MUCH more of Europe than I was able to.  Unfortunately, I had the camera and … Continue reading

Posted in Events, IBMMQ, WMQ Security | Tagged , , , , , , | 4 Comments

The Deep Queue – Episode #4: Listener email and why you should care about message types

Posted on November 3, 2008 by T.Rob

In this installment we answer an email from a listener asking about channel authentication.  The requirement is for a channel exit pair that exchanges credentials securely then falls back to a plaintext channel.  In the second segment we talk about … Continue reading

Posted in DeepQueue, IBMMQ, Podcast, WMQ Security | Tagged , , , | 3 Comments

Some new info about amqiclen

Posted on October 25, 2008 by T.Rob

Long-time MQ listserver participant and colleague Peter Potkay recently posted the following info about amqiclen which he received from a PMR.  My most recent developerWorks article talked about how the culture within the WMQ community tends to perpetuate established best … Continue reading

Posted in IBMMQ, News | Tagged , , , , , , , , , , | Leave a comment

Updated script templates

Posted on October 22, 2008 by T.Rob

The script templates for locking down admin access have been updated for WMQ v7 to include topics. I’ve also added additional comment lines, a change log and fixed a couple of typos. The new versions are an update to the … Continue reading

Posted in Errata, IBMMQ, Publications, WMQ Security | Tagged , , | 4 Comments

Puzzled by WMQ vulnerability advisory

Posted on October 2, 2008 by T.Rob

Well, I knew this one was out there but never looked at the CVE for it – there is a memory corruption vulnerability in the WebSphere MQ ( CVE-2007-6044) that is network exploitable.  What I can’t figure out is why … Continue reading

Posted in General, IBMMQ, WMQ Security | Tagged , , , , , , | Leave a comment