Stack Exchange MQ Q&A- Is it possible to remove a single group from accessing a directory? – stackoverflow.com
- dte_dbus_mq.c:40: error: expected ‘=’, ‘,’, ‘;’, ‘asm’ or ‘__attribute__’ before ‘ClientConn’ – stackoverflow.com
- IBM MQ: Is a channel for sending only necessary? – stackoverflow.com
- Using SSL support for Java clients & WebSphere MQ – stackoverflow.com
- dp:url-open ro read non latin characters from the message on the queue – stackoverflow.com
Tag Archives: security
Managing CA-signed certificates
MQ Admins are getting serious about TLS channels these days, but it isn’t always easy because there’s a fairly steep learning curve. Though there is plenty of documentation for the MQ aspects, and for X.509 and TLS itself, very little … Continue reading
Posted in Security, WMQ, WMQ Security
Tagged Admin, Architecture, Best Practices, IBM MQ, Recommended Practices, security, WebSphere MQ Security, WMQ Security
9 Comments
Pub/Sub security
One of the recurring questions I receive is about the differences between queue security and pub/sub security. The email below is typical:
Posted in Security, WMQ
Tagged Admin, Best Practices, Recommended Practices, security, topics, WebSphere MQ, WebSphere MQ Security, WMQ Security
Leave a comment
Cluster security
Well, the residency to write the new WebSphere MQ Security book is past the halfway point and we are working diligently to finish up on time. I’m happy to say that one of my favorite new security topics is covered … Continue reading
Posted in Events, News, Publications, WMQ, WMQ Security
Tagged Admin, Best Practices, clustering, Events, IBM, News, Redbooks, security, WebSphere MQ, WMQ, WMQ Security
1 Comment
Thoughts on certificate sharing
The topic of certificate sharing keeps popping up as of late so I wanted to address it here. The main objection to certificate-based crypto seems to be the administrative overhead. After having scripted up certificate management for several customers, I … Continue reading
Posted in WMQ, WMQ AMS, WMQ Security
Tagged Admin, authentication, Best Practices, certificates, non-repudiation, pki, revocation, security, sharing, tklm, venafi, x.509
Leave a comment
PCI zone and non PCI zone in same DataPower box
I’ve been having PCI Déjà vu lately. It seems the same questions keep coming up over and over. One strategy for compliance that is nearly ubiquitous is to segregate the PCI data from the rest of the network. In practical terms, … Continue reading
Posted in General, WMQ Security
Tagged Best Practices, commentary, compliance, PCI, PCI-DSS, Recommended Practices, security
2 Comments
Guest blogger @ WebSphere User Group
Ben Wen and I were invited to be guest bloggers at WebSphere User Group this month so the post I was planning for this space was hijacked! You can read it at WebSphere User Group posted as The Invisible Threat.
Posted in News, Publications, WMQ, WMQ Security
Tagged articles, commentary, News, Publications, security, WebSphere MQ, WebSphere MQ Security, WMQ, WMQ Security
Leave a comment
Configuration backups: the forgotten WMQ security control
Update: IBM has reconsidered and has announced that dmpmqcfg will be fixed as a defect! Subscribe if you would like a notification when the fix is announced. But please do read the post, especially if you are using amqoamd for … Continue reading →
Share this: