Tag Archives: Best Practices

MQ V8 Certification

Would it surprise you to know there’s an MQ V8 System Administration certification?  Normally I run down and take the test as soon as it’s available but this one has been out since January 14th and somehow I missed the … Continue reading

Posted in IBMMQ, MQ AMS, MQMFT, News, Security, WMQ ESE, WMQ Security | Tagged , , , , , , , , | 24 Comments

Avoiding reputational damage

Everyone knows that data breaches are expensive.  Security venders never tire of telling us exactly how expensive breaches are, on a per-incident or per-record basis.  In the case of a large retail brand, a breach can make a significant dent … Continue reading

Posted in IBMMQ, Security, WMQ Security | Tagged , , , , , , | 2 Comments

Configuration backups: the forgotten WMQ security control

Update: IBM has reconsidered and has announced that dmpmqcfg will be fixed as a defect! Subscribe if you would like a notification when the fix is announced. But please do read the post, especially if you are using amqoamd for … Continue reading

Posted in Fail, General, IBMMQ, IIB, MQ AMS, MQMFT, Security, WMQ ESE, WMQ Security | Tagged , , , , , , , | Leave a comment

Notes from the WSMQAdmin seminar

This post is a running capture of Q&A from the WebSphere MQ Admin seminar in Amsterdam, brought to you by WebSphere Insights and Nastel. Welcome to Amsterdam and thanks for attending!  I will continue to update it throughout the week … Continue reading

Posted in Events, IBMMQ | Tagged , , , , , , | Leave a comment

Pub/Sub security

One of the recurring questions I receive is about the differences between queue security and pub/sub security. The email below is typical:

Posted in IBMMQ, Security | Tagged , , , , , , , | Leave a comment

Cluster security

Well, the residency to write the new WebSphere MQ Security book is past the halfway point and we are working diligently to finish up on time. I’m happy to say that one of my favorite new security topics is covered … Continue reading

Posted in Events, IBMMQ, News, Publications, WMQ Security | Tagged , , , , , , , , , , | 1 Comment

Thoughts on certificate sharing

The topic of certificate sharing keeps popping up as of late so I wanted to address it here.  The main objection to certificate-based crypto seems to be the administrative overhead.  After having scripted up certificate management for several customers, I … Continue reading

Posted in IBMMQ, MQ AMS, WMQ Security | Tagged , , , , , , , , , , , | Leave a comment

Sharpening the saw

I am fortunate this year to participate in many seminars and conferences.  I just finished IMPACT and on June 5th I’ll be in New York for the WSMQAdmin seminar there.  The following week I’ll be in Zurich for the TI&M … Continue reading

Posted in Events, General | Tagged , , | Leave a comment

No such thing as a persistent queue!

The widespread usage of the phrase “persistent queue” has a negative impact because people believe that queue attribute actually does something. It’s always worth taking time to stamp out usage of that phrase wherever we find it and I’ll attempt … Continue reading

Posted in IBMMQ | Tagged , , , , , , | 5 Comments

PCI zone and non PCI zone in same DataPower box

I’ve been having PCI Déjà vu lately.  It seems the same questions keep coming up over and over.  One strategy for compliance that is nearly ubiquitous is to segregate the PCI data from the rest of the network.  In practical terms, … Continue reading

Posted in General, WMQ Security | Tagged , , , , , , | 4 Comments