Notify me!
-
Recent Posts
Archives
Categories
Stack Exchange MQ Q&A
- IBM MQ Connection failure : xcsGetpwuid got password entry with user name too long (more than 13 characters) – stackoverflow.com
- Deliver KDB keys for IBM MQ, based only on certificates – stackoverflow.com
- .Net MQ client can't connect to MQ over TLS CWSMQ0006E with reason 2538 – stackoverflow.com
- Ansible Playbook Not retaining "locale" settings: LC_ALL and LANG empty – stackoverflow.com
- 'inq' authority errors for TARGET queues for multiple applications though ALIAS queue is granted with +allmqi – stackoverflow.com
Meta
Follow me on Twitter
My Tweets
Category Archives: WMQ Security
Avoiding reputational damage
Everyone knows that data breaches are expensive. Security venders never tire of telling us exactly how expensive breaches are, on a per-incident or per-record basis. In the case of a large retail brand, a breach can make a significant dent … Continue reading
Posted in IBMMQ, Security, WMQ Security
Tagged Admin, Architecture, Best Practices, Recommended Practices, WebSphere MQ, WebSphere MQ Security, WMQ Security
2 Comments
Cluster security
Well, the residency to write the new WebSphere MQ Security book is past the halfway point and we are working diligently to finish up on time. I’m happy to say that one of my favorite new security topics is covered … Continue reading
Posted in Events, IBMMQ, News, Publications, WMQ Security
Tagged Admin, Best Practices, clustering, Events, IBM, News, Redbooks, security, WebSphere MQ, WMQ, WMQ Security
1 Comment
Thoughts on certificate sharing
The topic of certificate sharing keeps popping up as of late so I wanted to address it here. The main objection to certificate-based crypto seems to be the administrative overhead. After having scripted up certificate management for several customers, I … Continue reading
Posted in IBMMQ, MQ AMS, WMQ Security
Tagged Admin, authentication, Best Practices, certificates, non-repudiation, pki, revocation, security, sharing, tklm, venafi, x.509
Leave a comment
PCI zone and non PCI zone in same DataPower box
I’ve been having PCI Déjà vu lately. It seems the same questions keep coming up over and over. One strategy for compliance that is nearly ubiquitous is to segregate the PCI data from the rest of the network. In practical terms, … Continue reading
Posted in General, WMQ Security
Tagged Best Practices, commentary, compliance, PCI, PCI-DSS, Recommended Practices, security
4 Comments
GWC Webinar posted
The WebSphere MQ Security Deeper Dive slides from the Global WebSphere Community webinar last month are now posted on this site. You can get them from the Links page or just click here. If you want the screencast and recording … Continue reading
Posted in IBMMQ, MQ AMS, News, Publications, WMQ Security
Leave a comment
Previous security lab reposted
I acted a bit too hastily in removing the old WMQ Security Lab download when the new one was posted. Several readers reminded me that the new lab is for v7.1 and that isn’t even out yet! Everyone who needs … Continue reading
Posted in IBMMQ, Publications, WMQ Security
Leave a comment
Encrypting passwords in config files – secure or not?
Not long ago a colleague told me he wished that he could use a .kdb format keystore for his Java applications. When I inquired as to why, he said he liked that the .kdb includes the ability to stash an … Continue reading
Posted in General, WMQ Security
3 Comments
WMQ Security in v7.1
For those of you who missed it, Morag presented the WMQ Security session at this year’s WebSphere Technical Conference last week. This was exciting for a few reasons, not the least of which was – did I mention MORAG presented? … Continue reading
Posted in IBMMQ, News, WMQ Security
1 Comment
Guest blogger @ WebSphere User Group
Ben Wen and I were invited to be guest bloggers at WebSphere User Group this month so the post I was planning for this space was hijacked! You can read it at WebSphere User Group posted as The Invisible Threat.
Posted in IBMMQ, News, Publications, WMQ Security
Tagged articles, commentary, News, Publications, security, WebSphere MQ, WebSphere MQ Security, WMQ, WMQ Security
Leave a comment
Configuration backups: the forgotten WMQ security control
Update: IBM has reconsidered and has announced that dmpmqcfg will be fixed as a defect! Subscribe if you would like a notification when the fix is announced. But please do read the post, especially if you are using amqoamd for … Continue reading →
Share this: