Notify me!
-
Recent Posts
Archives
Categories
Stack Exchange MQ Q&A
- Accessing MQ Queue statistics when the QMGR lives on an MQ Appliance – stackoverflow.com
- IBM MQ Message stuck in queue – stackoverflow.com
- Apache camel JMS transacted component performance improvement – stackoverflow.com
- JMS issue as Java 8 is migrated to Java 17 with Jakarta 10 – stackoverflow.com
- Send Message to IBM MQ (PUT) with SSL from Java takes a long time to complete – stackoverflow.com
Meta
Follow me on Twitter
My Tweets
Category Archives: WMQ Security
When deprecated != deprecated
Every now and then we hear that a cipher algorithm has fallen to a new cracking technique. This cascades into a new round of deprecating any ciphersuites that rely on the newly cracked algorithms. Over the years we’ve moved from … Continue reading
Posted in IBMMQ, Security, WMQ Security
Tagged Admin, Architecture, Best Practices, ciphersuite, deprecated, IBM MQ, NULL, Recommended Practices, SSL, TLS, WebSphere MQ Security, WMQ, WMQ Security
3 Comments
Inaccurate MQ auths event messages
The security maturity progression in MQ starts with access control. First we isolate MQ Admin access, then add granular user and application access. This class of security control is known as intrusion prevention. After mastering that the next phase includes … Continue reading
Posted in IBMMQ, News, Security, WMQ Security
Tagged authorization, AUTHREC, bugs, Events, logs, News, security, setmqaut, WebSphere MQ Security, WMQ Security
2 Comments
News and updates
This is a quick note to tell folks a bit about my virtual absence of late, current events and plans for what’s coming up. Whatever happened to… I’m not exactly a candidate for VH1’s Where Are They Now but I … Continue reading
Posted in Events, IBMMQ, News, Security, WMQ Security
Tagged Admin, Best Practices, commentary, Conferences, Events, IBM MQ, News, Recommended Practices, security, WebSphere MQ, WebSphere MQ Security, WMQ Security
Leave a comment
MQTC Sessions and downloads posted
My sessions and downloadable scripts from MQTC 2.0.15 are now up on the Links page.
Posted in Events, IBMMQ, MQTC, News, Security, WMQ Security
Tagged Admin, Best Practices, Conferences, Events, security, WebSphere MQ Security, WMQ, WMQ Security
Leave a comment
Time for MQ to get serious about instrumentation and admin. Again.
Outstanding RFEs and feature requests have been a hot topic on the MQ list server of late. Looking at the RFEs that have been posted and discussed, there’s a general architectural requirement many of them seem to have in common: … Continue reading
Posted in Events, IBMMQ, IIB, News, Security, WMQ Security
Tagged Events, Hursley, IBM MQ, News, Recommended Practices, security, vulnerability, WebSphere MQ, WebSphere MQ Security, WMQ, WMQ Security
3 Comments
Zero to SSL in under 5 Minutes
A viewer of the Zero to Hello World video recently challenged me to do a similar video for SSL. Challenge accepted!
Posted in IBMMQ, Security, WMQ Security
Tagged Admin, Best Practices, Recommended Practices, security, SSL, TLS, tutorial, WebSphere MQ Security, WMQ Security
1 Comment
IBM MQ Security Requirements Questionnaire
Over the years I have often been asked for security templates and other canned assets to help make MQ security planning, implementation, and operation easier. These often become the source material for conference presentations, articles and videos. Some of these … Continue reading
Posted in IBMMQ, Security, WMQ Security
Tagged Admin, Architecture, Best Practices, IBM MQ, Recommended Practices, security, WebSphere MQ, WebSphere MQ Security, WMQ Security
2 Comments
Managing CA-signed certificates
MQ Admins are getting serious about TLS channels these days, but it isn’t always easy because there’s a fairly steep learning curve. Though there is plenty of documentation for the MQ aspects, and for X.509 and TLS itself, very little … Continue reading
Posted in IBMMQ, Security, WMQ Security
Tagged Admin, Architecture, Best Practices, IBM MQ, Recommended Practices, security, WebSphere MQ Security, WMQ Security
10 Comments
MQ V8 Certification
Would it surprise you to know there’s an MQ V8 System Administration certification? Normally I run down and take the test as soon as it’s available but this one has been out since January 14th and somehow I missed the … Continue reading
Posted in IBMMQ, MQ AMS, MQMFT, News, Security, WMQ ESE, WMQ Security
Tagged Admin, Best Practices, certification, IBM MQ, MQ AMS, WebSphere MQ, WebSphere MQ Security, WMQ, WMQ FTE
24 Comments
MQ Password/CHLAUTH research – Exec Summary
As of v8.0, MQ now can natively validate user IDs by checking the password against the Operating System or LDAP. Checking against Pluggable Authentication Module (PAM) was added in v8.0.0.4. Prior to v8.0 it was necessary to use a channel … Continue reading →
Share this: