Mostly good. Could use some expansion.
Sort of true. If you stick to "the big players" and don't follow links off their sites you're probably okay.
This is true in many ways. Needs lots of expansion - maybe even a course on identifying phishing. Kevin Mitnick has courses on this with his knowbe4 company - well worth checking out.
This didn't make much sense to me at first, I've got over 20 years in the industry and I had to look up Avira. I have no opinion on it yet. Perhaps "firewall your ports and don't be stupid" would be as good of a statement.
This is overblown in some respects but not others. It depends on your paranoia level. There are multiple motivations for tracking and for cookie. It's better to get to know which ones are what and to sort accordingly. Granted there's a huge, huge fountain of both and doing so manually is an absurd proposition. Perhaps using host files to deny bad actors is a good start.
I looked up Karna. "Karna originally known as Vasusena, is one of the central characters in the Hindu epic Mahābhārata. " Context? I looked up Karna download and didn't find much. Number 5 makes no sense to me. Personally I recommend starting at Sourceforge. I used to have a list of "okay to use software sites" which included No-Nags and http://www.econsultant.com/i-want-freeware-utilities/index.html , but time has moved on, I can't tell you the good ones for Windows anymore. With Linux I mostly shop my repositories.
This isn't an end-all be-all. It's a good step, but telling someone who doesn't know how to use Linux to use Linux is nearly as bad as just leaving them on Windows to begin with. In fact Windows 10 has improved security against (non-Microsoft) attackers so much even as a Linux fan I question the validity of this statement overall. Sure Microsoft pretty much pwns the system 10 ways to Sunday, but otherwise it's way better than previous versions.