The Lagoon TechMy little blog in Cyberspace.

1. Never write down your password

Some people are in the habit of writing down their passwords on sticky notes and putting them on their monitor, desk, drawer, etc.  This makes the security of your password effectively worthless.

2. Create a secure password for your user account

Many people create awful passwords such as “123456”, “password”, “qwerty”, “1234”, “baseball”, “football”, “letmein”, “abc123”, etc.  Those passwords are awful and I really do not understand why people create such passwords to begin with.

A good password contains no words found in the dictionary, has a mixture of numbers (1, 2, 3), letters (a, B, c), and symbols (!, @, #, $).

This is an example of a really good password:  [RO-#K^?9}htPtx

3. Do not install random software from the Internet

A lot of software (mainly for Windows) contains something called spyware. Simply put, spyware allows the author of the software to snoop in what you are doing on your computer. There is a greater chance that obscure software (from an obscure source) will contain spyware, but of course that is not always the case.

Please note that while Windows may have more malware available to it than other operating systems out there, that does not mean that Windows is guaranteed to get a virus, nor is Windows necessarily easier to infect than other operating systems out there.

4. Make sure your operating system’s firewall is on

A firewall is a piece of software that help police traffic to and from your computer system. Basically a firewall is your computer’s “border patrol”.

Even if you have a dedicated hardware firewall (a firewall that is separate from your operating system’s firewall; usually found on your Internet router like I have), it is still wise to leave your operating system’s firewall enabled for extra security.

5. Keep your anti-malware software enabled and updated

Pretty much everyone who has used a computer knows what anti-virus software is and what is does. In case you don’t know, anti-virus software basically gives you the potential to know if malware is trying, has tried, or maybe even has successfully infiltrated your computer system.

More and more people are starting to do away with anti-virus software because “they don’t need it”. Well I personally see anti-virus software as a tool…a tool that helps secure a computer system. When someone says that they “don’t need anti-virus software”, I think of the example that I gave to someone a while back on the Internet:

“Let’s say you go around telling people that you don’t need to see a doctor to test for cancer, because you do not have cancer, nor will you ever get any. How do you have the potential to know that you do not have cancer, if you are not checked by a doctor? How do you know that you will never get any cancer at all? You don’t!”

Your logic would not make sense in that situation because you are assuming something as fact, when in fact you are just guessing! The same applies to someone who says that they “don’t need anti-virus software” because they “know that they won’t get any malware” on their computer system or “I know that I am careful, hence I don’t need anti-virus software”. Sorry people but that logic just doesn’t add up!

I will give five things that I recommend for you to avoid when fixing / using your computer that may save you more time and trouble in the future.

1. Avoid running Windows registry cleaners on your computer

Simply put, a Windows registry cleaner supposedly “cleans out” the Windows registry by removing anything that does not need to be in there.

The problem?  The registry cleaner really does not have any clue whether a registry entry is truly needed or not, so it just guesses. Instead of helping your computer, registry cleaners may end up messing up your computer even more that it already was to begin with.

In addition, there is not really a big reason to clean the registry out. I have used Windows for over 18 years and not once have I ever had the registry become corrupt without me doing something intentionally that ended up causing the registry to mess up.

Bottom Line:  Please avoid Windows registry cleaners. They really are not needed, nor are they guaranteed to fix your problems.

2. Avoid turning off your anti-virus scanner just because something is malfunctioning on your computer

You may encounter a problem with a software program on your computer, and the support desk person asks you to try running their software with your anti-virus (anti-malware) software turned off.

This is not wise, because you are assuming that their software not only has no malware in it, but you are also technically exposing your computer to other potential threats with it being disabled.

Only in very certain and specific circumstances do I ever recommend someone to (for a very short time) turn off their anti-malware protection software.

This “please try our software with the anti-malware turned off” business is really a generic response from a support person. They have no idea why their software is not working properly on your computer to begin with.

Please note that you can run a computer without any anti-malware software and be just fine (Windows, MacOS X, Linux, UNIX, etc. — they all are capable of being infested with malware), but you will not have any potential to know if you do in fact have malware on your system, without an anti-malware scanning software running in the background.

Bottom Line:  It is unwise to disable your anti-malware software to get a problem working, unless it is a last (and I mean last) resort.

3. “Rebooting fixes everything”

People get this idea that if they reboot their system “all of their problems they had will go away”. This is not necessarily true. Sometimes rebooting does fix a problem, but other times rebooting is just putting a “Band-Aid” on the problem, and the problem will eventually resurface again.

With problems that resurface after a reboot, you will need you use trial-and-error (with Internet research) to figure out what is possibly wrong with your computer.

Yes, this part of the computer problem solving business is not fun, but it is necessary if you want to fix your computer without having to hire someone else to fix it.

Bottom Line:  Rebooting does not always fix your computer problems, nor should you assume that your computer problems have been fixed just by rebooting.

4. Buying an SSD will always make my computer run faster

While it is true now days that someone can go down to the computer store and pick up an SSD (Solid State Drive) for a good price, SSDs are not guaranteed to always speed up a computer.

Why? There is more to the performance of a computer than just the hard drive. Anyone using a computer with 512 MB of RAM, an old 1 GHz CPU, running Windows 7 is going to have a miserable time, even if they are using an SSD with fast random-seek data access.

A computer without a lot of RAM and an old, slow CPU will cause the computer to crawl on a modern desktop OS, regardless if the computer is using an SSD or not.

Bottom Line:  SSDs (Solid State Drives) are a great way of drastically improving the data access (read and write) performance of a computer system, but they are not the only deciding factor for a computer’s performance.

5. Avoid turning off your operating system’s automatic updates

I suspect many people run their operating systems without having the latest updates installed. This is bad for stability, performance, and security (that goes for any OS not just Windows). Updates are there for a reason. Ignoring them is not wise, unless you have a real good reason to ignore them.

Bottom Line:  Leave your operating system’s automatic updates on, unless you have a real good reason not to.

According to a web article, Akamai (a Content Delivery Network company) discovered a massive Linux botnet. A botnet is basically a bunch of compromised computers that allow attackers to perform various tasks that would otherwise be virtually impossible to accomplish without everyone’s compromised computers.

Basically, the botnet comes in the form of a Trojan. This Trojan targets Linux systems (including network routers). Once it gets into the system, it proceeds to download software to connect the computer to the botnet. The botnet is reportedly able to give up to a 150 Gbps DDoS** attack.

As I have said on my blog repeatedly, Linux is not immune to security problems. No operating system on the planet is immune to security problems. In this case, it is people using weak, insecure passwords on their Linux boxes.

If I set my Windows box’s Administrator password to ‘password123’ or ‘qwerty’, enabled remote desktop on my computer, and allow remote desktop through the firewall, I would eventually get hacked. Was that Windows’ fault or Microsoft’s fault? No, of course not. It would be my fault for setting a bad password on my computer.

Many people say “Linux is more secure than Windows”, but if you notice – most of the time – they do not give any technical arguments to backup what they said.

For example, a part of one of someone’s comment posted online said (direct quote):
“The primary attack vector to take over these systems is default or weak login passwords, and allowing internet-facing remote root. That has no bearing on Linux suddenly being less secure than it was yesterday, or in any way magically now just as insecure as Windows.”

Notice he said “That has no bearing on Linux suddenly being less secure than it was yesterday, or in any way magically now just as insecure as Windows.”, but he did not give any technical arguments to backup what he said. How is Windows “insecure”? How is Linux I have seen this dozens of times (no kidding).

What is worse is people will listen to them, assuming they are correct (e.g., Linux is more secure than Windows), and go off and repeat the same misinformation around on the Internet without even bothering to check if the information they received is in fact accurate.

Web article link: https://www.engadget.com/2015/09/29/linux-botnet-hits-with-150-gbps-ddos/

** Simply put, a DDoS attack is basically an attack that uses up the victim’s available bandwidth. This causes the victim’s computers to not correctly function when communicating with the outside world and internal network.