Notify me!
-
Recent Posts
Archives
Categories
Stack Exchange MQ Q&A
- Sending JMS message to IBM MQ with Apache Camel is abnormally slow – stackoverflow.com
- Queue manager disconnect is hanging forever – stackoverflow.com
- MQ XMS.NET Error while acknowledging a message – stackoverflow.com
- Initial Client Connection to IBM MQ using C# – stackoverflow.com
- How can I detect use of a remote queue definition? – stackoverflow.com
Meta
Follow me on Twitter
My Tweets
Tag Archives: WMQ Security
When deprecated != deprecated
Every now and then we hear that a cipher algorithm has fallen to a new cracking technique. This cascades into a new round of deprecating any ciphersuites that rely on the newly cracked algorithms. Over the years we’ve moved from … Continue reading
Posted in IBMMQ, Security, WMQ Security
Tagged Admin, Architecture, Best Practices, ciphersuite, deprecated, IBM MQ, NULL, Recommended Practices, SSL, TLS, WebSphere MQ Security, WMQ, WMQ Security
3 Comments
Inaccurate MQ auths event messages
The security maturity progression in MQ starts with access control. First we isolate MQ Admin access, then add granular user and application access. This class of security control is known as intrusion prevention. After mastering that the next phase includes … Continue reading
Posted in IBMMQ, News, Security, WMQ Security
Tagged authorization, AUTHREC, bugs, Events, logs, News, security, setmqaut, WebSphere MQ Security, WMQ Security
2 Comments
News and updates
This is a quick note to tell folks a bit about my virtual absence of late, current events and plans for what’s coming up. Whatever happened to… I’m not exactly a candidate for VH1’s Where Are They Now but I … Continue reading
Posted in Events, IBMMQ, News, Security, WMQ Security
Tagged Admin, Best Practices, commentary, Conferences, Events, IBM MQ, News, Recommended Practices, security, WebSphere MQ, WebSphere MQ Security, WMQ Security
Leave a comment
MQTC Sessions and downloads posted
My sessions and downloadable scripts from MQTC 2.0.15 are now up on the Links page.
Posted in Events, IBMMQ, MQTC, News, Security, WMQ Security
Tagged Admin, Best Practices, Conferences, Events, security, WebSphere MQ Security, WMQ, WMQ Security
Leave a comment
Time for MQ to get serious about instrumentation and admin. Again.
Outstanding RFEs and feature requests have been a hot topic on the MQ list server of late. Looking at the RFEs that have been posted and discussed, there’s a general architectural requirement many of them seem to have in common: … Continue reading
Posted in Events, IBMMQ, IIB, News, Security, WMQ Security
Tagged Events, Hursley, IBM MQ, News, Recommended Practices, security, vulnerability, WebSphere MQ, WebSphere MQ Security, WMQ, WMQ Security
3 Comments
Zero to SSL in under 5 Minutes
A viewer of the Zero to Hello World video recently challenged me to do a similar video for SSL. Challenge accepted!
Posted in IBMMQ, Security, WMQ Security
Tagged Admin, Best Practices, Recommended Practices, security, SSL, TLS, tutorial, WebSphere MQ Security, WMQ Security
1 Comment
IBM MQ Security Requirements Questionnaire
Over the years I have often been asked for security templates and other canned assets to help make MQ security planning, implementation, and operation easier. These often become the source material for conference presentations, articles and videos. Some of these … Continue reading
Posted in IBMMQ, Security, WMQ Security
Tagged Admin, Architecture, Best Practices, IBM MQ, Recommended Practices, security, WebSphere MQ, WebSphere MQ Security, WMQ Security
2 Comments
Managing CA-signed certificates
MQ Admins are getting serious about TLS channels these days, but it isn’t always easy because there’s a fairly steep learning curve. Though there is plenty of documentation for the MQ aspects, and for X.509 and TLS itself, very little … Continue reading
Posted in IBMMQ, Security, WMQ Security
Tagged Admin, Architecture, Best Practices, IBM MQ, Recommended Practices, security, WebSphere MQ Security, WMQ Security
10 Comments
Avoiding reputational damage
Everyone knows that data breaches are expensive. Security venders never tire of telling us exactly how expensive breaches are, on a per-incident or per-record basis. In the case of a large retail brand, a breach can make a significant dent … Continue reading
Posted in IBMMQ, Security, WMQ Security
Tagged Admin, Architecture, Best Practices, Recommended Practices, WebSphere MQ, WebSphere MQ Security, WMQ Security
2 Comments
MQ Password/CHLAUTH research – Exec Summary
As of v8.0, MQ now can natively validate user IDs by checking the password against the Operating System or LDAP. Checking against Pluggable Authentication Module (PAM) was added in v8.0.0.4. Prior to v8.0 it was necessary to use a channel … Continue reading →
Share this: