After some big ideas and a few months I gave in and used a pre-built website. At least I have something up now.
Avatar

Allen Baranov

Vcard Download vCard   what is this?
Rss_icon

Recent Activity

Filter by:
All
  • Quick Thought: Information Classification Like Creative Commons [Stealing the CC Ease of Use Icons for Info Classification]

    When something is complicated then it usually is quite wrong. I learnt this lesson with Firewall Rules. Usually when something was twisted around and not easy to understand it was because the Firewall was being used for a purpose ti was not designed for.

    Information Classification is usually pretty easy to understand. It is logical. There is stuff you want the public to know about, stuff you don't mind them knowing about, stuff that you don't quite want them to know about and stuff they most certainly shouldn't know about.

    There is also stuff that can't be shared outside of the company with out breaking the law or some "governance" and stuff that can't be shared overseas.

    Finally, there is stuff that shouldn't be shared outside of a department such as "strategy stuff" or "HR stuff".

    What you call these is just semantics and what you do to keep these where they should be is where the fun comes in.

    Information Security is accused of being overly complex and it really shouldn't be. Much like copyright is (generally) complex. So, the good people of the Creative Commons worked out just how to separate the tricky-to-understand bits from the easy-to-understand stuff and get people using CC without having to read law at Harvard or some such. You choose the pretty pictures that show you what you want and voila.

    So, can we do the same with Information Classification?
    2 months on
    Information Security Thoughts - Allen Baranov
  • [OT] Cutest Vuvuzela Player Ever?
    2 months on
    Information Security Thoughts - Allen Baranov
  • Re: Why I won’t be quitting Facebook today I didn't say they were on their own. I said they presented two different problems with Facebook privacy and don't speak for everyone.
    3 months on
    Disqus - Latest Comments for abaranov
  • Re: Why I won’t be quitting Facebook today Simon, you are wrong in your comment that Peter and Tim are on their own.

    The crux of the issue is really just that Facebook took information that was private and made it public or semi-public. You just can't do that!

    Twitter never gave any assurances that the tweets would be private. You knew from the start that everything you tweeted would be for all to see. The same with blogging. However, Facebook convinced users that their information was private and then opened it up for all to see. It was maybe not explicitly done but why have groups and friends when everyone can see you stuff anyway?

    Facebook saw how open people were on Twitter and wanted to replicate that across to their own network which is fair enough but they did it badly. They needed to go from opt-out to opt-in.

    Facebook is not alone here - Google made the same mistake with Buzz. But Google sorted out the Buzz privacy concerns in a matter of hours. Facebook privacy concerns are still there.

    I am one of those people who doesn't trust online social networks as far as I can throw them (0.008m) so I have never shared much on Facebook ever.
    3 months on
    Disqus - Latest Comments for abaranov
  • I'm Cool Like That... So, it seems that I am following the trend with Blogging which is somewhere I am not proud to be but it is interesting just how closely I have followed this trend.

    Statistics (when they are not manipulated) are ugly things. Sometimes they tell the truth like a little kid with no idea of how to be "nice". So here goes - my statistics of Blogs published on my site:

    2007 - 78
    2008 - 32
    2009 - 34
    2010 - er... 3

    I had a lot to say in 2007 and a lot of time to say it. I accept that. 32 posts a year is not great, but it is not bad... 3 is pathetic. 

    Its not that I have been busy.. I have been busy but not way way way more busy than in 2008/2009. I haven't moved my online conversations onto Twitter either. Twitter has impacted on my time a bit... but not that much that 1 blog post a week would break me. 

    I just haven't blogged. And other people have stopped too. Rich of Securosis seems to think that Twitter is the reason but I think it is more about two other things - 

    1. I belive Information Security Bloggers (maybe other blogs too) have just emerged from the Trough of Disillusionment (go, go Gartner, go).
    2. Blogs tend to be mostly a one-way conversation but really are about gathering the ideas of what is floating about in the world and forming an opinion about it then writing about it. So technically its like a general conversation and if everyone has left the conversation then there really is not very much to discuss.
    But we are coming back and most of us (me included) are just really blogging about how we have stopped blogging and are now back. But we'll get there... it has been a bit of an awkward silence but its ended. 
    3 months on
    Information Security Thoughts - Allen Baranov
  • I am a hacker - whether I like it or not [... and not the bad cyber criminal type.]

    For the latest ITWeb Security Summit (which was amazing) I was chosen as a speaker.

    I had the following challenge -

    • talk about the different InfoSec Standards available
    • do it at 3:40pm 
    • do it straight after the tea break
    • make sure that the attendees don't fall asleep
    Needless to say - it took a lot of thought but I eventually managed to keep them interested according to some positive reports I got after the talk.

    I'm not going to go into the details of the talk here but after quite a bit of re-assessment I realised that I had basically "hacked" the standards. Hacked - in the good sense. There was no "piracy" involved (me maytee) and everything was above board. (and above plank.) 

    But to keep the attendees interested in the talk I basically took the standards and applied them in ways they were just not designed to be used. And that is the true definition of hacking. 

    In the past 4-ish years or so I have tried to model myself as a serious Information Security Professional. I have tried to put away the "hacking" part of me and concentrate on "working for the Man" but it seems that, without me trying, that part of my brain will find a way out. 

    So, I will set my aim for the next year to nurture the "hacking" side of my brain and mold it into something I can use as an Information Security Professional. 
    3 months on
    Information Security Thoughts - Allen Baranov
  • Back. Someone (who shall remain anonymous) took me to task about not blogging. Which is fair enough since I haven't done a blog post since the end of last year - nearly 6 months ago. And it was my aim for the last few years to be the most prolific Information Security Blogger in South Africa (which really means writing more posts than that particular person). And I have been losing the race quite badly recently.

    On the other hand that person fell asleep while chatting with me. Which is actually more a comment on how much sleep he had had the night before rather than how exciting the conversation was. I hope.

    But.... that someone had an interesting point which I think is quite right - my excuse that I have nothing to blog about is wrong - I should blog and things to write about will come to me. Thats sounds very Zen. Or Xen.

    So, I am starting up the blogging again and I hope that all my faithful readers will forgive the lack of posts and come back to be challenged again. (I'm watching you - both of you!)

    So, see you soon.
    3 months on
    Information Security Thoughts - Allen Baranov
  • Here, have an iPad

    I'm not sure if you know this but:

    I sleep in your garden at night, follow you wherever you go and collect your used, disposable fast-food containers in the hopes that I can get enough DNA and replicate you.

    I listen in on all your conversations and am in the process of starting a private army that will protect you from "elements" that we deem "not appropriate" like some of your so-called "friends" and family.

    I've also installed monitoring software on your PC to record your conversations for a book I am writing called "Simon Dingle - The Ultimate Man Amongst Ultimate Men, Volume 3" (1 is in my private collection and 2 is only available on certain P2P networks).

    My question is this:
    Am I classified as a "close friend" and thus not eligible for this competition?

    Read more comments by Allen Baranov
    5 months on
    abaranov's Comments Feed
  • Re: Here, have an iPad I'm not sure if you know this but:

    I sleep in your garden at night, follow you wherever you go and collect your used, disposable fast-food containers in the hopes that I can get enough DNA and replicate you.

    I listen in on all your conversations and am in the process of starting a private army that will protect you from "elements" that we deem "not appropriate" like some of your so-called "friends" and family.

    I've also installed monitoring software on your PC to record your conversations for a book I am writing called "Simon Dingle - The Ultimate Man Amongst Ultimate Men, Volume 3" (1 is in my private collection and 2 is only available on certain P2P networks).

    My question is this:
    Am I classified as a "close friend" and thus not eligible for this competition?
    5 months on
    Disqus - Latest Comments for abaranov
  • Multimedia Codecs for Symbian

    Maybe this is a silly questions but why not just use the libavcodec library from the FFmpeg project? It is pretty much complete for all codecs and is opensource.

    Read more comments by Allen Baranov
    5 months on
    abaranov's Comments Feed
  • Going live for ZA Tech Show 100

    Well done. I enjoy your podcast in the JHB traffic and look forward to lots more episodes.(Typical South Africa tale - I started listening when my car radio was "donated" to crime.)

    Mostly I enjoy keeping up to date with local news and the banter. Keep it up.

    Regarding moving from voice to video - maybe for episode 200 there will be some technology where we can download a 3-D Simon who will sit on our desks and talk directly to us. (Think: Morph.)

    Read more comments by Allen Baranov
    6 months on
    abaranov's Comments Feed
  • Re: Going live for ZA Tech Show 100 Well done. I enjoy your podcast in the JHB traffic and look forward to lots more episodes.(Typical South Africa tale - I started listening when my car radio was "donated" to crime.)

    Mostly I enjoy keeping up to date with local news and the banter. Keep it up.

    Regarding moving from voice to video - maybe for episode 200 there will be some technology where we can download a 3-D Simon who will sit on our desks and talk directly to us. (Think: Morph.)
    6 months on
    Disqus - Latest Comments for abaranov
  • The SMS ripoff and what you can do about it

    MTN have a clause in their terms and conditions that if you use their network to bypass their services then they will charge you a premium rate for data which is about R23/M. They do this for Skype and have threatened to do it for MXiT but have not implemented it AFAIK for MXiT. Even so, with your dubious maths and mine added on, you'd still get about 100 MXiT messages per SMS.

    Read more comments by Allen Baranov
    8 months on
    abaranov's Comments Feed
  • Re: The SMS ripoff and what you can do about it I haven't checked MTN's terms but that doesn't surprise me at all. Classic protectionism rather than taking advantage of new technologies to provide a better, cheaper and more appealing service. This reminds me of the Mesh Potato concept that I found out about at a TEDx event a little while ago. It is geared at bypassing the telcos in a big way: http://www.villagetelco.org/2008/06/the-origin-...
    8 months on
    Disqus - Latest Comments for abaranov
  • Re: The SMS ripoff and what you can do about it MTN have a clause in their terms and conditions that if you use their network to bypass their services then they will charge you a premium rate for data which is about R23/M. They do this for Skype and have threatened to do it for MXiT but have not implemented it AFAIK for MXiT. Even so, with your dubious maths and mine added on, you'd still get about 100 MXiT messages per SMS.
    8 months on
    Disqus - Latest Comments for abaranov
  • Blackberry Storm 2 lands in SA

    I don't think RIM should be trying to create an iPhone killer.

    IMHO you should have a phone that is either great for business or great for home - not both.

    You can have a phone that is great for business and good for home - like the Nokia e71 but RIM will always lose if they compete with the iPhone.

    A Blackberry should always come with a keyboard, finished.

    Read more comments by Allen Baranov
    8 months on
    abaranov's Comments Feed
  • Re: Does your mobile network respect your privacy? Thanks! The R5m fine is all well and good but it doesn't address the collection of that information in the first place. Even having access to that information internally is highly problematic, potentially.
    8 months on
    Disqus - Latest Comments for abaranov
  • Re: Does your mobile network respect your privacy? Another thought provoking article; well done Paul.

    The thing is that according to the RIC Act, if the networks provide your browsing information to anyone other than the customer then they are looking at a potential R5m (Dr. Evil pinky) fine per customer.

    There are exceptions - if you give written permission and if law enforcement need the info (and have the correct documentation) but R5m is a big amount - even for Vodacom and MTN so your browsing history should be fairly safe.

    Unless you are doing something illegal... in which case you'll need to register under a false name and address. But if you are doing something illegal, you've probably thought that far already.
    8 months on
    Disqus - Latest Comments for abaranov
  • Re: Blackberry Storm 2 lands in SA I don't think RIM should be trying to create an iPhone killer.

    IMHO you should have a phone that is either great for business or great for home - not both.

    You can have a phone that is great for business and good for home - like the Nokia e71 but RIM will always lose if they compete with the iPhone.

    A Blackberry should always come with a keyboard, finished.
    8 months on
    Disqus - Latest Comments for abaranov
  • The most important piece of software this decade

    Actually, not too bad. My next post is about them ditching it.

    Google Gears did exactly what it needed to and HTML5 will take it further. It still is (cringe) game changing,

    Read more comments by Allen Baranov
    9 months on
    abaranov's Comments Feed
  • I stand by Gears!

    I shouldn't think it will be too long. I would even guess that Google Chrome for Apple will come with HTML5 ability just in time.

    Google will want to capture the Nerdy-Apple-Fanboi (NAF?) market.

    Read more comments by Allen Baranov
    9 months on
    abaranov's Comments Feed
Next page