Welcome to MSDN Blogs Sign in | Join | Help

Browse by Tags

All Tags » Security   (RSS)
Wednesday, October 21, 2009 12:47 PM

Error 0xC00E0033 when you try and install MSMQ with Active Directory Integration

As is the way, when I set up various tests with my trusty servers I bump into problems that haven't been documented before. The machines are used for many scenarios so have changed domain a few times and been upgraded every now and then. I know I should
Posted by JohnBrea | 0 Comments
Filed under: ,
Wednesday, August 12, 2009 5:06 PM

Microsoft Security Bulletin MS09-040 - Vulnerability in Message Queuing Could Allow Elevation of Privilege

A new patch came out yesterday for MSMQ: MS09-040 Microsoft Security Bulletin MS09-040 - Important 971032 MS09-040: Vulnerability in Message Queuing could allow elevation of privilege If you are already on the latest service pack then you will be OK for
Posted by JohnBrea | 0 Comments
Filed under: ,
Monday, August 03, 2009 4:02 PM

Default MSMQ queue permissions have changed in MSMQ 4.0

For Windows Vista and Windows Server 2008, newly created queues may not have the permissions you're used to. With MSMQ 3.0 and earlier, creating a queue would assign the following defaults: Everyone – Get permissions, Get properties, Send message. Anonymous
Posted by JohnBrea | 2 Comments
Filed under: ,
Tuesday, July 14, 2009 4:37 PM

MSMQ and Federal Information Processing Standard (FIPS)

The United States Government has a couple of standards that provide a benchmark for implementing cryptographic software. These are: Federal Information Processing Standard 140-1 (FIPS 140-1) which was published in January 1994, and is superceded by...
Posted by JohnBrea | 0 Comments
Friday, June 12, 2009 5:28 PM

"Can I write a script to create a queue in MSMQ and set the permissions on it?"

The first part is easy enough but the second is tricky. For example, here's how to create a public queue with 'Old School' VBScript: set iq=CreateObject("MSMQ.MSMQQueueInfo") iq.PathName=”machine\queue” iq.Label=”The queue” iq.Create (IsTransactional=0)
Posted by JohnBrea | 0 Comments
Filed under: , ,
Thursday, June 04, 2009 6:38 PM

MSMQ won't install on Windows 2008 with a Fatal Error (0x80070643)

One of my colleagues in support has ventured under the MSMQ spotlight with a post about a permissions/UAC problem preventing installation on Windows 2008: MSMQ installation on Windows 2008 fails with error "Attempt to install Message Queuing Server failed
Posted by JohnBrea | 0 Comments
Filed under: ,
Friday, May 22, 2009 4:37 PM

MSMQ 5.0 - Changes introduced with Windows 7 and Windows Server 2008 R2

Quick clarification point to prevent confusion: MSMQ 5.0 means Windows 7 and Windows Server 2008 R2 MSMQ 4.0 means Windows Vista and Windows Server 2008 'R1' Currently there doesn't seem to be much to worry about - business as usual for most customer.
Posted by JohnBrea | 0 Comments
Friday, January 23, 2009 10:35 AM

How to send authenticated MSMQ messages without using a domain account

For MSMQ, message authentication relies on a certificate being stored in Active Directory under the user account. These certificates are automatically created when the domain user logs in with their account on a machine (one certificate created per machine).
Posted by JohnBrea | 0 Comments
Filed under: ,
Wednesday, December 17, 2008 12:52 PM

Authenticated or encrypted MSMQ messages are rejected because of incorrect CSP name

There is a new hotfix released for MSMQ 3.0 on Windows XP to correct a problem where the certificate service provider name was not being written correctly to the message: FIX: A Message Queuing 3.0 message is rejected on the receiver when you send the
Posted by JohnBrea | 0 Comments
Filed under: , ,
Friday, November 21, 2008 1:30 PM

Routing Support in MSMQ requires Enterprise Administrator privileges

One down-side of enabling Routing Support for MSMQ is that you need to be an Enterprise Administrator to install it, as can be seen from this Technet article: Installation permissions Message Queuing computer Permission level required Message Queuing
Posted by JohnBrea | 0 Comments
Wednesday, October 15, 2008 3:16 PM

Microsoft Security Bulletin MS08-065 - MSMQ 2.0 vulnerability

This bulletin came out yesterday and only applies to Windows 2000. If you are still running systems using MSMQ 2.0 then please download and deploy the hotfix at your earliest convenience. This KB discusses the hotfix (build 5.0.0.807): 951071 MS08-065:
Posted by JohnBrea | 0 Comments
Filed under: , ,
Monday, October 13, 2008 4:00 PM

Authenticating MSMQ messages between forests

If you try to send authenticated messages between machines in different forests, you will see them end up in the Transactional Dead Letter Queue (assuming you enabled source journaling). This is because authentication uses certificates that are stored
Posted by JohnBrea | 0 Comments
Filed under: ,
Monday, September 15, 2008 5:30 PM

Clearing up MSMQ certificates from Active Directory

Some people have found a problem where Active Directory contains too many MSMQ certificates for a particular user account, usually if that's the one they use for installing all their MSMQ machines. As you know, MSMQ uses certificates for authentication
Posted by JohnBrea | 7 Comments
Friday, September 12, 2008 10:34 AM

Sending encrypted MSMQ messages

MSMQ has moved out of private corporate LANs and now companies send messages over the Internet. Data security should therefore be top of the to-do list for anyone wanting to follow this route. The first consideration is what do you actually need to encrypt?
Posted by JohnBrea | 0 Comments
Thursday, July 10, 2008 5:25 PM

Getting MSMQ messages out of Windows Server 2008 remotely

I'm now into full swing looking at MSMQ 4.0 on Windows Server 2008 using Virtual Server. I haven't got round to installing 2008 on my 64-bit laptop and desktop yet but maybe in the summer sometime when customers are on vacation I'll have the time. Sending
Posted by JohnBrea | 2 Comments
More Posts Next page »
 
Page view tracker