Category Archives: DeepQueue

Deep Queue #14 – The Elephant Under the Bed

This episode of The Deep Queue celebrates the first birthday of the podcast with some discussion of the SSL protocol vulnerability that was recently discovered.  Although there has been no announcement with regard to WebSphere MQ, I try to put … Continue reading

Posted in DeepQueue, IBMMQ, WMQ Security | 4 Comments

Deep Queue #13: Unlucky number thirteen

After a month unplanned hiatus, The Deep Queue is back.  This month we are talking about high availability, which is obviously something The Deep Queue lacks.  This may not seem like a security topic at first glance but to my … Continue reading

Posted in DeepQueue, IBMMQ, Podcast, WMQ Security | Leave a comment

WebSphere MQ – Coming soon to an audit near you!

The June 29 episode of The Deep Queue is finally up!  Sorry about the delay, I was on an engagement last week that had me staying over the weekend in Boston to perform a production implementation on Saturday.  Although I’ve … Continue reading

Posted in DeepQueue, Podcast, WMQ Security | Tagged , , , , , , , , , | Leave a comment

Deep Queue #11: Security breaches are not news?

The subject of the UC Berkeley data breach was discussed on the May 15th Security Squad podcast.  The thing that struck me was that the breach itself was not the topic of conversation but rather the debate was about whether … Continue reading

Posted in DeepQueue, IBMMQ, Podcast, WMQ Security | Tagged , , , , , , | Leave a comment

The Deep Queue – Episode #10: Cash in on mortgaged risk!

No, that’s not mortgage risk.  Someone’s already done that and look where it got us.  No,I’m talking about mortgaged risk – the act of saving time or money by accepting risk that is hard to measure but easy to hide … Continue reading

Posted in DeepQueue, Events, IBMMQ, Podcast, WMQ Security | Tagged , , , , , , | Leave a comment

The Deep Queue – Episode #9: Going postal about WMQ security

This episode of The Deep Queue takes its inspiration from the thousandth time I was asked how to “turn on MQ security”.  Yes, that’s right, the thousandth time.  At least since I’ve been counting.  There were perhaps half a thousand … Continue reading

Posted in DeepQueue, IBMMQ, Podcast, WMQ Security | Tagged , , , , , | Leave a comment

The Deep Queue – Episode #8: The good news and the bad news

This episode of The Deep Queue contains news about the new MSoT stand-alone WMQ Explorer SupportPac, yet another payment processor data breach, updates to some items we’ve covered in the past and breaking news about a WebSphere MQ interim fix … Continue reading

Posted in DeepQueue, Errata, IBMMQ, MQMFT, Podcast, Publications, WMQ Security | Tagged , , , , , , , , | 1 Comment

The Deep Queue – Episode #7: Reducing your attack surface

This installment of The Deep Queue is about improving security by reducing the number of attack vectors that are exposed.  Given two systems with equivalent functionality the one with more exposed attack vectors is said to have a “larger attack … Continue reading

Posted in DeepQueue, IBMMQ, Podcast, WMQ Security | Tagged , , , , , , , | Leave a comment

The Deep Queue – Episode #6: The Myth of the Trusted Internal Network

In this episode of The Deep Queue I explain why I believe the “trusted internal network” is a myth.  Many of the problems that I see on consulting assignments would have been prevented by the same security measures I recommend … Continue reading

Posted in DeepQueue, IBMMQ, Podcast, WMQ Security | Tagged , , , , , , , | 1 Comment

The Deep Queue – Episode #5: WMQ Security news and Random WMQ Stuff

The Deep Queue Episode #5 is now online.  In this episode we cover some WMQ security news and introduce a new segment called Random WMQ Stuff which is pretty much what it sounds like.  We also now have an iTunes … Continue reading

Posted in DeepQueue, IBMMQ, Podcast, WMQ Security | Leave a comment