Computer Tips

Managing passwords is always a challenge and creating strong ones is important.  Two different options are presented here.  As a regular user of Firefox be aware that a Master Password has to be set to have saved passwords encrypted.  To do this:

1. Left-Click on Tools.
2. Left-Click on Options …
3. Left-Click on the Tab.
4. Place a check mark in Use a Master Password.
5. Enter a strong Password.

The other option that could be more appealing if using multiple browsers or computers is the currently free service from .  It allows you to save passwords from multiple sites and set up automated form information that is stored encrypted on-line.  It is a good idea to also keep a copy on the computer in-case anything happens to this service and it is not accessible.  To do this, use the link above and also download the LastPass Pocket that will serve as a backup.

And, as an additional plug for a most excellent Book, how to create a strong password is given on page I-31.  You can also cheat and not order the book by downloading the free excerpt from this page!

[If you liked this POST please pass it on to your friends.]

You can have a safety net in case anything ever happens to your computer.  In the next few weeks a new feature will be available at the Napa Valley Security Consulting Web-site.  This feature is software called  “Image for Windows (IFW) & Image for DOS (IFD)” that takes a “snapshot” of the hard-drive and a detailed step-by-step instructional guide that will make using this software easier.  So, ask yourself what would you do if any of the following happened to your computer?;

• A brand new Malware (Virus) slips through the security of the computer and corrupts a key operating file making the computer stop functioning.
• A Windows Update or new Software install interferes with a key piece of software and you have a deadline within 24 hours if not the same day.
• An important Software Application does an update and you do not like the change or it stops working.
• The Hard-Drive crashes.
• A Guest, your child, a co-worker or even yourself downloads a malicious file unknowingly, deletes a critical file, or other activity that ends up “destroying” or impairing the computer.
• You have your computer running “just right” and a new change makes it run like a rabbit through quicksand and you do not know what to do.
• OR, you wish you could save and return your computer to that “just right” state as needed.

One of the above may sound familiar and you can!  The solution is an ISO Image of the computer hard-drive.  To explain how it works, imagine you were living in New Orleans and you took a picture (image) of the city, in detail, right before Katrina hit.  And after the damage occurred you used this image overwriting everything and restoring the city to be as when the image was created.  This is what an ISO Image does for the computer by capturing a picture of the hard-drive at an instant in time.  It works because the computer is composed of ONES and ZEROS and as the computer changes these ONES and ZEROS are written to the hard-drive in different sequences.  Thus, if one of the above situations damages the computer’s operation, even to the point it will not boot up (start), this image can be restored to the original hard-drive or a new hard-drive completely erasing the damage!  And, if you need to extract individual or multiple files from the ISO Image, without restoring the total image to the hard-drive, no problem.

This can be for personal use and to a small business a life saver, time saver and money saver.  The process is first to create the image, store it and when the “glitch” occurs instead of tearing your hair out or paying for hours of computer services you just restore the image to the hard-drive.  You may have one question; “what happens to files that are created or modified after the ISO Image is created?”  Good question!  You have many options but here are two to start;

1. Create a differential backup ISO Image at regular intervals.  You can even set this up to work automatically and the neat thing is there is no need to remember what files have changed!  This procedure takes a previously generated FULL ISO Image and compares all changes from its time of creation and makes a “difference” or differential backup ISO Image.  Thus, any new files or modified files are recorded.  And, since each differential backup only looks at the original FULL ISO Image you’ll get versions of files.  This means you can either restore the differential ISO Image to have the computer operating as it was that day or extract a particular file to how it appeared on the date the differential backup occurred.  Overtime as more changes are made on the computer the size of each differential backup will grow.  Once, it gets too big, create a new FULL ISO Image for the reference and subsequent differential backup will be smaller in size.  [Note:  Differential backups rely on their original FULL ISO Image so be sure to keep these files together.]



2. Copy newly created files or modified files on a regular basis to a memory device such as a USB drive.  If you are not sure how to do this detailed instructions are provided in Section 4 of the Book.  As an example; let’s say you use a program called “Toy Management” everyday.  You can save its data via a Left-Click on File and a Left-Click on Backup allowing you to choose a location to create the backup file.  So, you save this backup file to a USB drive which you safely store.  At a future time if there is a computer glitch use the FULL ISO Image to recover the computer.  Next, you would start the “Toy Management” software, Left-Click File, Left-Click its restore to use the backup file of the data.  The computer is running again and the software you need has the latest data to use.

As you can see this ability will bring tremendous piece of mind.  If you find this helpful please pass this on to anyone else who could benefit from it.

Auto-Login / Logon is a feature that can be used if you have several User Accounts [Section I-pg 28 of Book] on a computer.  And, you should since this will provide a backup User in-case a particular User Account becomes corrupted.  It is a convenience feature providing for a particular User Account that is used daily to automatically login when the computer is started.  Here is why Auto-login is not recommended:

1. Auto-login User Account becomes corrupted;  you will need to login to the alternate User Account and stopping the auto-logon process can be difficult.  For XP, hold the SHIFT key after seeing color on the screen during the boot-up process to stop the Auto-Logon.  In Vista, this option is likely not available and there is the problem.
2. Guests, Friends or Associates;  reality means sometimes we prefer not to have someone gaining access to our files or the potential of their actions enabling Malware to access the computer.  By requiring a Username and Password during the log-in this protects from this situation.  And, if extra security is needed, you can require a password each time the computer goes into Screen Saver Mode.  [Right-Click on the Desktop (pg I-20), Left-Click Properties, Left-Click the Screen Saver Tab, place a check mark in.]

To gain quick access to the Auto-Login settings you can:

In XP; Left-Click on , Left-Click on and type in Control Userpasswords2 (there is one space between the words) and place a check mark in if not already there to require a Username and Password during logon.

In Vista; Left-Click  and this box will appear, type in Control Userpasswords2 (there is one space between the words) and select the setting to require Username and Password.  Although, inconvenient most of the time, it will save the day when you need to access a different User Account for whatever reason.

If you see on this web-site or other web-sites what appear to be randomly underlined or double-underlined words that work more like Ads than content related to the article there is a reason.  Most likely you are using Internet Explorer with an extra tool bar or an Add-On.  What happens are keywords in the current web-site are identified and linked to different advertisers and the Add-On tool tries to link the two.  If you find this annoying you can track down what is doing this in Internet Explorer as follows:

1. Left-Click on Tools, Left-Click on Manage Add-Ons.
2. In the window that appears the source is likely be a Toolbar or Extension.  Look for Add-Ons not related to the Security Software you use.  And you should be able to ignore items listed by Adobe or Java.
3. After identifying the likely source, Left-Click on it to highlight and Left-Click on the Disable Button.  You may have to restart Internet Explorer for the change to take effect.
4. Go back to the web-site and see if the double-underlines have dissappeared.  Do not worry about disabling Add-On’s but if they are not the source you can enable them by following step 3.   The add-ons that you will notice if left disabled are Shockwave, Flash, or Java since these are used to create the animation effects seen at different web-sites.  There is a good chance that disabling some of these Add-ons will allow the Internet Browser to work faster.  A word of caution; disabling a Phishing or Web-Site protection add-on that the Security Software you use may have added is not recommended.

On a final note the single underlined links are normally legitimate to the article so these will not dissappear even though the double-underlined links are disabled.

[If Double-Underlines are still seen at other web-sites, especially if using Mozilla Firefox or Google Chrome Internet Browsers, this indicates the web-site itself is using AD software to create these links.  But you can still check via a Left-Click on Tools & Left-Click Add-ons for these Internet Browsers.]

If you arrived at this post directly please check out the EzineArticle on this that explains how this type of attack works.   Here are several steps to take.

1. Firewall; since there are multiple ways to disable and stop a Firewall from doing its job it is important to have a robust firewall installed on the computer.  There are at least three 3rd party firewalls, free for use on a personal computer, that meet this requirement.  We have quick links available; to reach them please create a free user account via the sign-in page and locate the Firewall Button to access information on each one and to download.  [For reference; the 3rd Section of the C.A.L.M. Manual has detailed instructions on how to install this Software.]
2. Testing; once the new Software is installed you can test how well your computer ports are protected.  These are the doorways into your computer from the Internet.  Log-in with your newly created user account and click on the Firewall Testing button for detailed instructions.

Be sure the Windows Firewall is disabled once the new Firewall is installed.  To verify go to the Control Panel.  Windows XP; Left-Click on Start, Left-Click on and when it opens Left-Click on .   If not already set, select the OFF (Not Recommended) option, not to worry since the 3rd Party Firewall is now serving this roll.  And to verify this close all these windows and locate the Firewall Icon in the Systray at the bottom right of the computer.  Double-Left-Click on it or Right-Click on it and Left-Click its control panel from to the pop-up menu to open.  This new window should give the current status of the Firewall.  Windows Vista; Left-Click on  and type in Security Center, press ENTER.  Left-Click on Windows Firewall and choose the option and ignore any warnings that appear.  [See the Firewall 3rd Section in the Manual for more detail.]

Detail Firewall Testing instructions are available in the free-to-register portion of the website.  The 3rd Party Software is included since it is free for home use, enjoys a strong user approval and has tested top of its class in defeated outside kill tests.

A future article to be posted will discuss the other necessary step of checking the modem settings if you have a DSL or cable modem.

Being on the leading edge of technology comes with its own challenges.  This particular problem occurs because Adobe has not yet produced a 64 bit version of its FLASH player but Microsoft has produced a 64 bit Internet Explorer browser.  The result is websites that use FLASH may not work properly or at all.  For example, you might be needing to follow an on-line educational course and cannot get it to work.  Not a problem, because Firefox versions 3.0 are still 32 bit and will not be 64 bit until version 4.0.   So, here is what you can do in the meantime:

1. Download and install

   Link to Firefox3

   [Not sure how?  Use the detailed instruction from Chapter 1 of the C.A.L.M. Manual.]

2. Start Firefox before step 3 is performed and check the Firefox download location on the computer for saving files by a Left-Click on TOOLS in the menu bar, Left-Click on Options… , Left-Click on the MAIN Tab and the middle area allows setting the location to download files.
3. Next download and save the Adobe Flash to the computer.  At the Adobe Website Left-Click at the right column where it says to download now.  In the next web-page Left-Click on the Agree & Install prompt.
4. Close all open Internet Browsers and Double-Left-Click on the Adobe Flash install file that was downloaded in step 2.  Follow the installation prompts and Left-Click Continue or Allow to any Windows Security prompts or security software prompts.

Once installed re-open the Firefox Internet Browser and

[ATTENTION: Excellent Series of Articles to learn how to avoid getting HACKED, but only consider removing Anti-Virus Software if you are the sole person responsible for the computer and its contents.]

After reading the book and Block the Hacker Series on Ezines you will know that the Limited User Account for XP is one of the strongest security measures you can implement for the computer.  And if you are a Windows Vista user you have this security automatically built in via the User Access Control feature.  This new series of blogs is going to explore and explain the possibility of running your computer without active Anti-Malware (Anti-Virus) security software on the computer!  The reason to consider this opportunity is regaining the speed and performance you expect from your computer.  To do this successfully requires understanding how Malware (Computer Viruses) is able to infect the computer, the computer practices to keep this from happening and some great tools to verify that you are not infected.  Making this leap requires building confidence in the security changes that will be discussed and seeing that week after week that the security software is no longer detecting Malware & Viruses.  This new posting category will be found under the title Brave of Heart.

The important parts to be covered will be;

• Making sure the proper security changes are implemented.
• Monitoring with the installed Anti-Malware Software that new infections are not occurring.
• Adjusting security until new infections no longer occur.
• Taking the leap and uninstalling the Anti-Malware (Anti-Virus) Software and seeing an immediate improvement in your computers speed!
  [A 3rd Party Firewall is not to be removed since this is necessary to protect from a direct Internet Attack.]
• Learning to use 3 key Microsoft Utilities and an on-line scan utility to double-check for Malware.
  [These Utilities allow you to do a quick check prior to accessing a sensitive web-site such as on-line banking.]
• Looking at installing a 2nd Hard-Drive and creating a backup image as a sure way to recover the computer.
  [Although not absolutely necessary doing this will bring an explosion of joy into your heart when the Hard-Drive does fail.]

These following topics will be covered in greater detail to protect against the ways that Malware can attempt accessing the computer:

1. Installed by the Computer User; if you download a program, install from a CD or other memory device a piece of infected software can end up compromising the computer.  We will look at verifying the safety of the source for the Program, determining its trust level and using a free on-line scan tool to do a security check before installation.
2. Via Emails; emails are a common way for viruses to spread.  The number one way recommended for increasing protection from this source is moving to using on-line web mail.  Even if using something like Microsoft Outlook more than likely you already have access to web mail.  Web mail protects you since the Web Mail Server will pre-scan all your email for Malware, most spam is immediately detected and no attached files are downloaded to your computer until you authorize it.  In a POP3 scenario an email application downloads emails to the computer where you can view them even while not connected to the internet.  The danger is even the action of viewing or opening these emails, since they are resident on the computer, gives Malware an opportunity to infect the computer.  This is not the case for web mail since it resides on the Web Mail Server and not your computer.  And if you use Web Mail and your hard-drive crashes all your email is safe!
3. Via Web Sites; visiting malicious websites is a common way for infections to occur.  It is important to use secure Internet browsers, adjust the browser settings to defeat drive-by infections, and use web-site warning services.  Different Internet browsers will be discussed.
4. P2P Sharing Programs; P2P sharing programs have a high security risk.  Sending and receiving files directly from other computers is an opportunity for disaster especially in a public shared environment.  In this scenario it is not recommended to remove Anti-Malware Software.   However, most Anti-Malware Software can turn off different features and you could leave the P2P scanning feature enabled and disable the other features of the Anti-Malware program.  Be aware that if a brand new virus is sent the security signature file will not catch it, the security software heuristics is the the only means to detect it and the best one has only a 70% detection rate.
5. Instant Messaging; this feature follows the same recommendation as Emails.  On-line instant messaging such as Google or Yahoo do not give direct access to the computer.  Here again, but keeping the transfer of information via the web computers and not directly to your computer means their security software is scanning and keeping you safe.  The web-server does the heavy lifting so your computer can run fast!
6. Direct Port Access;  The final way that Malware can gain access to the computer is a via direct attack from the Internet from another computer.  For this reason never disable the Firewall.  The performance impact of a 3rd Party Firewall is minimal compared to the resource drain of Anti-Malware software.  This is why once the Anti-Malware software is removed while leaving the 3rd Party Firewall software operational you will immediately notice a much improved performance of the computer.

Following this series will be worth the effort even if you never make the leap since you’ll gain a greater understanding of how to keep the computer secure.  Please share this with friends, family and associates.  In the next blog the Limited User Access feature of Window Based Computers will be discussed.

All Software needs to be up-to-date to maintain security.  This rule applies with exclamation points to Java Software, created by Sun Microsystems, that is a popular language used by web-site designers and software developers.  As versions are released the earlier versions are not always automatically removed.  This is to be avoided to eliminate a potential security hole that hackers might exploit.

Revo Uninstaller,  CNET link, is the free program of choice recommended for removing programs because it creates a restore point on the computer in case there are problems.  Download and install to the computer.  If some of these terms and procedures are new for you please check out the information available through the main web-site located via the About Page.  For a Windows XP computer with a Limited User account you can use the “Run as …” command as explained in the Book and also in this Ezine Article.

These are the steps to follow;

1. Download the Java Software, Sun’s Java, to the desktop or any location you select but do not install.
2. Start the Revo Uninstaller program and wait for the listing of programs installed on the computer to finish.
3. Look for entries starting with Java or J2SE.
4. Right-click on one of these, select the uninstall option, confirm it if asked, and select the advanced mode to start the 4 part operation.a & b. The restore point will be created and a analysis will be completed.

   c. Once the default utility starts, navigate the series of questions via the “next” buttons, select the “Remove” option when asked and the “finish” button at the end.

   d.  The “next” button will be gray until each scan completes so click it when it activates.  Once the registry scan is performed, at the following screen, choose “Select All”, “Delete” and “Yes”.

5. Repeat this process for each Java listing.

Once all earlier versions are removed make sure all software and especially any Internet Browsers are closed before proceeding.   Install the latest version downloaded in step 1 above and restart the computer when done.  That’s it!  If this was helpful to you please pass this on.

In case you prefer, another way to follow us is on Twitter.

If you have read the Block the Hacker series we published via Ezine Articles you will also want to check out the latest installment HERE.

Also, stay tuned for the Java Article to keep improving the computers security.