If you are one of the lucky ones that have a laptop with a combined Intel/Nvidia GPU (also called “cross-processor” or “video co-processor” or “prime” – it features an nvidia mx or quadro chip that “helps” the intel integrated chipset. One thing to be aware of, this is not a discrete GPU – you can _not_ disable either of them permanently or use only one (to save battery at work / have more graphics power for steam, etc…) they always work together. But that aside. using a recent nvidia driver it works fine and even in Ubuntu this is now an option (when using the proprietary driver)
This works fine in most of the cases, see task manager: GPU0 indicates it is using the nvidia GPU
you can tune these settings using the nvidia control panel per application
However, a simple web-app called SketchUp (the free version is no longer for download) I found out it looks ugly.. like.. “2004 videogame” ugly.
Note: the following does not work for Firefox and Edge browser (no idea why) but works very well in Chrome and Safari.
In the NVIDIA Control Panel under “3D Settings” select “Adjust image settings with preview” and chose “Use the advanced 3D image settings” – this allows the applications to configure their prefered GPU
then, select Chrome and associate it with the Nvidia GPU (and tweak the settings if you feel adventurous) and restart chrome (also terminate the chrome agent in the taskbar (or just reboot))
there.. much better. Enjoy 3D graphics the way they were meant to look like.
keep in mind, a MX130 is not a powerful video card, the results are.. well.. don’t expect 2020 gaming graphics but still looks very nice and smooth.
so parental controls are needed for some people.. or frankly.. sometimes you just can’t hide from all this porn and stuff that you rather would prefer not to have seen afterwards. However only Apple has a properly working solution, and that’s user based, anyway… so how to do this for windows, apple, linux, mobile phones, TVs, etc etc etc.. in a home?
For the android mobiles I have family link, Apple devices have solid parental controls but Windows/Linux is either expensive or.. well. do it yourself :)
I decided to do three things: 1) change DNS resolver on the home router and 2) manipulate the laptops using CNAMEs to force them to enable safe search (as you can still see smut when using google/bing/youtube and disabling safe search). Step 3 was rolling out Google Family Link on the mobile devices.
Put those into your router instead of the ones provided by your ISP. That works well. I have not found a way to do this with IPv6, though.. the open DNS resolvers for IPv6 do work but I could not find them for family shield, help?
Step 2: Google image search still finds smut. Let’s adjust that, too ;)
the same goes for strict.bing.com and restrict.youtube.com – just create CNAMEs / hosts entries as indicated here.
# force google safe search
22.214.171.124 www.google.com #forcesafesearch
126.96.36.199 www.google.nl #forcesafesearch
188.8.131.52 www.google.de #forcesafesearch
184.108.40.206 www.google.bg #forcesafesearch
# same for Bing
220.127.116.11 www.bing.com #force strict
# and for youtube
18.104.22.168 www.youtube.com #restricted youtube
22.214.171.124 youtu.be #restricted youtube
126.96.36.199 m.youtube.com #restricted youtube
188.8.131.52 youtubei.googleapis.com #restricted youtube
184.108.40.206 youtube.googleapis.com #restricted youtube
220.127.116.11 www.youtube-nocookie.com #restricted youtube
the internet just got a lot more funny :)
Step 3: Mobile Phones/Tablets
Kids are smart. they will find out that using 4G they bypass the filters that we just created. So I can only recommend Apple’s parental controls, they are solid and can be fine-tuned but they are per-device. Google has a different framework called Family Link.
It takes control over the phone, allows you to set limits for use, bedtime, app installs, filters for browsing, force safe search, etc..etc. – also works well for Apple. It also forces you (the parent) to link to the family as “Admin” so you will be asked questions for app installs, can approve and reject, keep track how much time was spent on what app, set limits per app, etc.
Step X: Please. for the love of god: Take a moment and explain to your kids why you do this. Make them understand that there are people out there without good intentions. That you are protecting them for their own good and that these restrictions will be dropped when they turn 13/16/18 years old – make a plan and PLEASE tell them that you are able to track that phone. Be transparent and they will be, too when they grow up. Also: they will trust you. If you disagree with me please watch the “Black Mirror” episode “Arkangel”
So in this trying times (thanks, Corona) I got myself a new employer and a new laptop. A Dell 5591 (a.k.a. heavy boi) but as I saw it has a dedicated GPU and lots of RAM next to a second SSD.. I decided it has to dual boot Fedora and Windows. Here my notes/caveats.
Have your bitlocker recovery key ready, Fedora plays with the partitions which locks your drive. You need to unlock it only once after the disk has been manipulated but you have to. (or your admin.. or you need a new windows install!)
disable UEFI Fast/Secure boot in BIOS if you want to run proprietary Nvidia card drivers. (that laptop has a hybrid Intel dedicated / MX130 GPU (optimus?)
nvidia proprietary driver as described by negativo17 is a lot more stable/predictable than the stuff described at Fedora Optimus or
The installer of the live image is as sweet as ever. Everything works right out of the box, no surprises. No trouble. <3 Automatic partitioning actually does a really good job (I shrank the windows/bitlocker volume a bit so i can install next to Windows, just to prove a point – the installer found this and put itself next to it nicely. (see note about bitlocker above)
change scale to 0.9 or 0.95 using gnome-tweak-tool
decide screen lock / sleep / suspend / lid close (this seems to change with every fedora release)
About this nvidia/intel hybrid thing… there seems to be a lot of things going on wrt prime/optimus/render offloading.. as I am using Negativo17‘s driver implementation the Gnome feature does not quite work, yet.. at least I have not seen the card work for applications launched that way. There is a lot of information on https://negativo17.org/nvidia-driver/ and it is still a lot less work and actually works compared to the manual kernel module hacking and playing with runlevels as indicated at the RPMfusion website ;)
using the flag __NV_PRIME_RENDER_OFFLOAD=1 __GLX_VENDOR_LIBRARY_NAME=nvidia [appname] to start an application actually works!
the website hints to edit the steam launch options adding “DRI_PRIME=1 %command%” but for me it is the NV_PRIME_RENDER… string that does the magic. Needs more testing with 32 bit libs.
[andreas@NB-AR ~]$ __NV_PRIME_RENDER_OFFLOAD=1 __GLX_VENDOR_LIBRARY_NAME=nvidia glxspheres64
Polygons in scene: 62464 (61 spheres * 1024 polys/spheres)
Visual ID of window: 0x2c8
Context is Direct
OpenGL Renderer: GeForce MX130/PCIe/SSE2
61.419987 frames/sec - 68.544706 Mpixels/sec
60.036362 frames/sec - 67.000580 Mpixels/sec
but I haven’t gotten it to work for steam, yet. may be caused by 32 bits and that we are actually running ubuntu stuff here. :)
[andreas@NB-AR ~]$ __NV_PRIME_RENDER_OFFLOAD=1 __GLX_VENDOR_LIBRARY_NAME=nvidia steam
Running Steam on fedora 31 64-bit
STEAM_RUNTIME is enabled automatically
guess I have to amend this string to the .desktop files for the application ( ~/.local/share/applications) or whereever this is set up
I did encounter some suspend issues (device freezing/black screen after resume) so I did follow this article and enabled the traces.. then changed the RTC from CEST to UTC (as recommended) – so far no problems anymore. (but they also hint to the nvidia driver…)
Local time: Sun 2020-03-29 16:09:13 CEST
Universal time: Sun 2020-03-29 14:09:13 UTC
RTC time: Sun 2020-03-29 16:09:13
Time zone: Europe/Amsterdam (CEST, +0200)
System clock synchronized: yes
NTP service: active
RTC in local TZ: yes
Warning: The system is configured to read the RTC time in the local time zone. This mode cannot be fully supported. It will create various problems with time zone changes and daylight saving time adjustments. The RTC time is never updated, it relies on external facilities to maintain it.
If at all possible, use RTC in UTC by calling 'timedatectl set-local-rtc 0'.
# timedatectl set-local-rtc 0
Local time: Sun 2020-03-29 16:09:47 CEST
Universal time: Sun 2020-03-29 14:09:47 UTC
RTC time: Sun 2020-03-29 14:09:47
Time zone: Europe/Amsterdam (CEST, +0200)
System clock synchronized: yes
NTP service: active
RTC in local TZ: no
# echo 1 > /sys/power/pm_trace
# systemctl suspend
decided to refresh my poor server that had failing disks and bring it to the next level.
– Ubuntu 18.04 LTS on an SSD as a base. (steam and plex still seem to love ubuntu)
– install SSHD and start from scratch.
– differnet harddisks instead of LVM
– replace my AMD FX with a Ryzen 5
– add a GTX1060 for video transcoding and steam
– enable steam link
– throw nextcloud on it
– different mountpoints/drives for nextcloud and plex
– an SSD for system/root
– two factor authentication
– and…of course.. it has to run minecraft server ^^
computing power is x4 now while power consumption has halved, I will probably throw some hypervisor and another SSD for that on it, too. I want to play with pfsense and SDN some more and always need a public host (next to my VPS)