| |
|
RSS Feed - WebSphere MQ Support
|
RSS Feed - Message Broker Support
|
  |
|
| Route-To-Label and Security issue |
« View previous topic :: View next topic » |
| Author |
Message
|
| KSkelton |
 Posted: Tue Apr 20, 2004 5:11 am Post subject: Route-To-Label and Security issue |
 |
|
Apprentice
Joined: 28 Oct 2001
Posts: 45
|
Wanted to run this by the group.
I have a Route-To-Label flow which has one input Node.
Many remote client queues point to this Local queue on Integrator.
We have done this to reduce the number of message flows for our client applications. We have an issue now where the security granted on some of these remote queues are more restrictive.
This has created a security hole, since a savvy user could create an XML message for one of the secure queues but place the message on an insecure queue (thus bypassing security) and the message will be routed via the message flow.
I see two ways around this.
1) Split the message flow into two flows. One for secure transactions and one for insecure. (This is fine as long as there are only two levels of security. This can get ugly if there are multiple levels.)
2) Run all the insecure remote queues through a Verification Message flow first. This flow would have a filter which would read the LABEL in the message and compare it against a hard-coded list of insecure labels. If the label is not in the group I toss the message and send an alert.
This would prevent a secure message from being placed on an insecure queue.
This would require maintaing a list of labels.
3) Ok, three solutions. Don't use Route-To-Label for this purpose.
Is there an easier way to do this?
Nothing seems to work at the queue level since the MQMD can be changed by the client program. |
|
| Back to top |
|
 |
| kirani |
| Posted: Tue Apr 20, 2004 10:17 am Post subject: |
|
|
Jedi Knight
Joined: 05 Sep 2001
Posts: 3779
Location: Torrance, CA, USA
|
I'd prefer option 2. You can store the labels into DB table to make it more flexible.
Can you provide more info on "secure queue" and "non secure queue"?
_________________
Kiran
IBM Cert. Solution Designer & System Administrator - WBIMB V5
IBM Cert. Solutions Expert - WMQI
IBM Cert. Specialist - WMQI, MQSeries
IBM Cert. Developer - MQSeries
|
|
| Back to top |
|
|
| KSkelton |
| Posted: Tue Apr 20, 2004 11:02 am Post subject: |
|
|
Apprentice
Joined: 28 Oct 2001
Posts: 45
|
Sure.
A secure queue is one that is locked down to a specific security group using setmqaut. A non secure queue would be open to a larger audience.
Right now I setup the Verify flow using a CASE statement to read the Route-to-label label from the XML.
Here is another question regarding Solution #2.
Is there any issues with including the verify message flow directly in the route-to-label message flow? Messages would be put to either the verify queue directly (if it is a non secure flow) or to the route-to queue directly if it is a secure queue. |
|
| Back to top |
|
|
| kirani |
| Posted: Tue Apr 20, 2004 10:31 pm Post subject: |
|
|
Jedi Knight
Joined: 05 Sep 2001
Posts: 3779
Location: Torrance, CA, USA
|
I believe you can merge this processing into one flow. This flow will first verify the incoming message and then route it to appropriate (secure or non-secure) queues,
_________________
Kiran
IBM Cert. Solution Designer & System Administrator - WBIMB V5
IBM Cert. Solutions Expert - WMQI
IBM Cert. Specialist - WMQI, MQSeries
IBM Cert. Developer - MQSeries
|
|
| Back to top |
|
|
|
|
|
| |
|
Page 1 of 1 |
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
