the itjerk

my adventures with technology

Category Archives: PC

parental controls

I have a teen that refuses to do homework. You know, gets a “zero”. Thus, I take the phone away. However, teen needs a computer for homework. Fine. But you know when she gets on to the computer, she’s going to go to all those sites where “screenagers” waste their time. That’s fine. I’m going to show you how to block individual sites using OpenDNS and your Router. [Note that I’m going to use terminology for my Netgear, but chances are if you’re bothered to read this, you’ll know what I’m talking about. Also, while my Netgear router has a “Blocked Sites” function, it doesn’t work. Useless!]

DNS can be set in many places: local computer, router, modem. I’m not quite sure what trumps what, but I believe that’s the line. Using your router for DNS is better than using your modems – my AT&T modem does not allow it to change! Setting on an device level, well, that’s a lot of work. Also, I have to believe that most “screenagers” don’t know what DNS even is. So, here we go.

The first step is to open your router’s settings and go to Internet Settings (also called WAN). Set the Primary and Secondary numbers to OpenDNS, 208.67.222.222 and 208.67.220.220. Now, all requests originating form your router will go through OpenDNS. I’m sure there is some chatter on whether using Cisco-owned product is all that good, but from what I’ve read, it’s one of the better choices out there for the home user. What you may give up in privacy, you’ll gain in secure web browsing.

The second step is to let OpenDNS know that request from your router are yours. Okay, that may sound all scary and Big Brother, but let’s not pretend that our web surfing is anonymous. It’s not. You buy your internet from someone, or are you really getting it for free from a leaky neighbor or a nearby Starbucks?

To sign up for an OpenDNS account, go to their website and sign up for a free Home account. All it requires is an email address. Once completed, open their Dashboard from a computer on your home network. Under settings, add your local network: it’s going to be the IP address of your modem. Give it name, and save it. OpenDNS will now associate requests from that IP as yours. Under Web Content Filtering, you’ll see two areas. The top is a predefined set for a variety of “undesirable” sites – if I had teenage boys, I’d sure as hell use this to block the “naughty bits”. The bottom section allows individual site blockage. Here’s what I wanted:

Give it about five-ten minutes (they say three) and those sites are as good as gone! While a web browser may give a different warning (usually a cert error), dig one deeper with nslookup, you’ll see what’s going on:

PS Desktop> nslookup snapchat.com
Server: UnKnown
Address: 192.168.0.1

Non-authoritative answer:
Name: snapchat.com
Addresses: ::ffff:146.112.61.104
146.112.61.104

And if you go to that IP:

Couple of points: First, you’ll probably need to run Cisco’s OpenDNS-Updater program as your ISP provides your modem with a dynamic host; exact same thing as if you were running a DynamicDNS service like DuckDNS. Second, a really smart kid could probably figure out how those sites are being blocked. My kid is smart, but if she was really that smart, she’d just do her homework in the first place.

One the web:
https://www.opendns.com/home-internet-security/

Microsoft Surface Go 3

Yeah, I’m a jerk, I bought one. $379 from their website, delivered in a couple days. It booted into Windows 11 and all is good except screen sharing cuts out though after a minute or so. Wonder why? Sold the orignal Surface Go on eBay for $156.50 plus shipping.

new computers

My teenage daughters received new computers this Xmas. The younger one (freshman in high school) got the Surface Laptop Go. It was relatively inexpensive at $540 for a 10th Gen i5, 8GB RAM, 128GB model. I also opted for a Microsoft Complete package that runs $84 for two years. It has a touch screen, touch Windows Hello power button, 12.4″ screen with 1536 x 1024 (148 PPI) resolution. On the disappointing end was that it arrived with Windows 10 2004. After a round of updates, I had to use that Windows 11 Installation Assistant to get to Windows 11. Also disappointing is the 720p camera and lack of lighted keyboard. But for what she’ll be doing, web browsing, watching movies and (hopefully) schoolwork, it was a great solution. I just hope it’s durable.

The older daughter (junior in high school) made the pitch for an Apple MacBook Air, as she didn’t want “some janky-ass Surface computer that I’ll never like”. Fair enough, all of her friends have Apple computers. Ordered on a Tuesday evening, it arrived the next morning at 9:30am in an Apple Store bag, hand delivered to my door (for $9.00 extra). It was a base model, with M1 chip, 8GB RAM and 256GB SSD, costing $899 (with Education pricing). The Air has a superior Retina screen (though without touch capabilities) and a lighted keyboard (good to see that touch bar gone). I also opted for annual Applecare at $70 per year. Kids, right?

Those Dell Latitude 3190s? Not sure if I’ll scrap or sell them, they got some heavy use during the pandemic and you know, kids put stickers all over their laptops! But I did upgrade them to Windows 11 (one required me to turn on TPM in the BIOS) before doing a Reset this PC that (among other things) cleared the TPM before restoring the OS. That’s comforting.

windows 11

Windows 11 is upon us. A fleet of new Lenovo M70s prompted to upgrade out of the box, while my newish Dell Vostro mading me use the Windows 11 Installation Assistant tool. Given the clean-look of Windows 10, I was initially a little underwhelmed with the new look, but with all new OSes, I’ve grown love the new-found elegance that is Windows 11. I do have one little beef: PLEASE add a TaskBar Corner Overflow setting for SHOW ALL.

new dell pc

Recently I searched this website for information about my Windows desktop only to find BYOPC 2016 – is that computer really five years old? Indeed it is, so with little hesitation I set out to find a replacement. Why? Foremost, I believe in a four (4) year replacement cycle for desktop computers. Remember, there’s no badge of honor earned from your janky old computer. Performance, security, safety, peace of mind and your itjerk’s respect all factor in. Second, the computer is not Windows 11 compatible, which as an IT professional will be important for me. Finally, it was an inexpensive build, on the noisy side (cheap case) and low on storage (128GB boot drive). Yet as cheap as it was, it served me well, but now it’s time to move on!

As my primary desktop, it was quite easy for me to arrive at the decision to buy a new computer. Building computers is fun, but good, workable options are just inexpensive. Don’t forget, PC makers spend a lot of time designing well-engineered systems; that’s part of what we pay for. I don’t game, so I have little need for power or anything but a standard configuration, including one that is Windows 11 ready. Now, I haven’t had a Dell computer since the old Dimension C521 in 2007, but my recent experiences with my daughter’s Latitude 3190s (despite initial problems) brought me around again.

A quick trip to Dell.com yielded a Vostro 3681 in a small form-factor case, with 8GB RAM, 256GB M.2 PCIe NVMe Solid State Drive and an Intel 10th Gen i5-10400 processor(6-Core, 12M Cache, 2.9GHz to 4.3GHz) processor, all for $499 (after a $50 coupon code). The HDMI port fits well with my KVM, and it has an extra bay for a spare hard drive. Pandemic-driven built-in bluetooth and wifi card in most desktops (here via a second M2 slot) is handy as well. Plus it’s kinda cute, with that red front bezel.

It arrived quickly (Sat->Wed), and within no time I had an extra 8GB RAM installed, as well as the 128GB drive from my old computer. I signed in with my Microsoft account, and OneDrive did a pretty good job of getting everything in place. I did have to ensure that my Documents and Pictures folders did not connect to OneDrive, as I don’t want them to sync nor be in the Cloud. The perfunctory Windows (shipped with 20H2) and Microsoft Store updates were next, followed by Dell’s System Update. I had previously made a list of the applications I needed, so it was off to the races to download and install them. One thing I realized is that my old Quicken 2007 software is a real relic; getting that now requires an annual subscription, so I’m glad I still had the CD! Once I copied the data from my old drive over, I took it out and plugged in a 1TB “scratch disk” from the old computer that I have a bunch of misc files on. It’s an old SATA drive, so I may replace it with a SSD to keep the “silence” the Vostro 3681 provides.

Update: That 1TB “scratch disk” was actually a 500GB drive, and I did replace it with a 512GB SSD.

Nota Bene: Before you wipe clean your old computer, be sure to give the new computer a run through of your most important tasks. For instance, opening my book InDesign and printing a PDF copy yielded a couple missing fonts (which I had) and a PDF preset (which luckily I found). In other words, don’t be in a hurry to throw out the old!

All in all, it’s a silent, snappy little computer that more than provides for what I need in a desktop environment. Good on you Dell.

One the web:
Dell Vostro

hello windows 11, good-bye surface go?

That cute little Surface Go I purchased a year ago fails the Windows 11 compatibility test. Although it has TPM 2.0, seems the processor is off by ten: I’ve got the Gold 4415Y, but the minimum is Gold 4425Y. The PC Health Check app now says coming soon, so let’s see what’s going on.

WTF, Microsoft, pony up and make your hardware compatible!

oh dell you sucked today

I ordered a Dell Latitude 3190 2-in-1 Laptop for my daughter late last week. It was a certified refurbished computer, and with discount was cheap, $240. Now I know, ordering someone else’s problem computer can be a bad idea, but it still has a one (1) year warranty and is …certified!

The short story is that arrived today, DOA. It then took me 45 minutes to get through the service prompts, mostly because the Service Tag had not yet been entered into Dell’s system. After a further wait, Dell offered a motherboard replacement part in 1-2 business day, while a complete return/replacement would take 7-10 days after approval, plus shipping.

Really?  That just sucks Dell.

Update: A new computer arrived two days later, along with a return Fedex label. All was well with that unit, updates galore, but my daughter is quite happy with it…

Update, Update: I decided to purchase a second one, for myself. Placed the order, unit arrived, and it did not work: Windows error SYSTEM SERVICE EXCEPTION stop code, so after another hour on the phone with Dell, I returned it for a refund.

byopc 2018

Come to find that it’s been four years since I last rebuilt my linux box. Should I, or should I not? The old wizard box has lost its door, I’ve been having some issues with freezing lately, but most of all, it feels like it’s time. Or does it? I’m such a Libra!

Keeping my motto of “cheap and low power,” I’m looking at the Intel G4400 processor for a whopping $49 bucks. It’s marginally better than my current G4320, but similarly, the single thread mark is just marginally worse than the more expense i3-8100 (which I used here). It’s a great value, especially considering I can get a less expensive motherboard (Asus H110M A/M.2) that still has VGA, otherwise I’d also have to upgrade my KVM. In any circumstance, I’ll need to upgrade to DDR4 memory, which for 16GB is not cheap either, so I’ll probably stick to 8GB: at $80 it’s the most expensive component in this build. And if I get a new case, I should get a new power supply, and might as well get a new SSD… So that’s a new computer for $315.25 from my local Microcenter.

A big plus is that I also get to do a clean install, which after two LTS upgrades, is exciting, but work:

  • Minimal Base 18.04 LTS
  • Apps (that’s another post)
  • Security: UFW, DNSCrypt, DuckDNS, fixed IP, etc.
  • Music servers: Logitech Media Server, MiniDLNA with Bubblesoft
  • Install LAMP, configure servers:
  • Setup Apache, migrate /var/www & databases
  • What am I forgetting?

Plus, I’ll need to install that new 3TB raid from my old box, and the spdif card, but what the heck to do with all those old data files…

Well of course I got a new computer, what itjerk wouldn’t?

dnscrypt

Domain Name Service (DNS) is the mechanism by where numeric IP addresses become readable domain names; it’s far easier for me to tell you to visit strawberrybricks.com than a bunch of numbers. When you browse the internet, then, the addresses you type or click on go through a DNS search. Typically, your ISP provides this service, or whomever you get your network connection from – however there is an implicit level of trust involved. Who’s to say that yahoo.com for example, is really yahoo.com? What is the DNS server spoofed the reply? Further, any DNS server can collect a wealth of information by recording your DNS requests. Finally, the speed of your browsing is dependent on how quickly these requests are filled.

Both Google (8.8.8.8) and OpenDNS (208.67.222.222) provide free DNS services that are fast and secure, and supposedly do not track your requests. A third service, Quad9 (9.9.9.9) was very recently launched. Your ISP has a lot of information about you. Switching your DNS to one of these providers is simple (just type them in your router, or network connection), and gives some degree of privacy. Every little bit helps?

DNSCrypt goes one further by encrypting all your DNS requests. It’s an easy enough program to install, available for PC, Mac and Linux, and for routers using DD-WRT. On my Ubuntu box, I needed to install libsodium-dev first, and then was most successful installing DNSCrypt-proxy from source by using the old “configure, make, make install” method with version 1.9.5. Then, you can run it with systemd automatically.

On the web:
DNSCrypt

bracket: dropbox vs google drive

If using a Browser, Google Drive wins. If on a local computer, draw.