this post was submitted on 30 Apr 2026

83 points (98.8% liked)

Linux Gaming

25711 readers

12 users here now

Discussions and news about gaming on the GNU/Linux family of operating systems (including the Steam Deck). Potentially a $HOME away from home for disgruntled /r/linux_gaming denizens of the redditarian demesne.

This page can be subscribed to via RSS.

Original /r/linux_gaming pengwing by uoou.

No memes/shitposts/low-effort posts, please.

Resources

Help:

Launchers/Game Library Managers:

General:

Discord:

IRC:

Gaming on Linux

Matrix:

Telegram:

Gaming on Linux

founded 2 years ago

MODERATORS

monolalia@lemmy.world

[Solved] Terrible performance in Linux Mint compared to Windows (piefed.ca)

submitted 1 week ago* (last edited 1 week ago) by PlzGibHugs@piefed.ca to c/linux_gaming@lemmy.world

28 comments fedilink hide all child comments

I have an older computer that I use for some simple games. Its I5-7400, GTX-1050, 12GB memory, and an SSD - not new by any standards, but most of the games I'm playing are a decade old or more. I switched to Linux Mint today, since I don't want to use Windows 11, but the performance on Mint is terrible compared to Windows 10. For example, in Portal 2's native Linux version, I get like 10 fps in the title screen. War Thunder doesn't even launch. The drivers are set to Nvidia's proprietary drivers via the GUI. Am I missing something? I'd really rather not switch back to Windows.

Edit: VulkanInfo is saying, "ERROR: [Loader Message] Code 0: loader_scanned_icd_add: Could not get 'vkCreateInstance' via..."

It also seems to only be showing my CPU, not gpu? Not certain, since I don't unstand a lot of the details, but it says, "deviceType = PHYSICAL_DEVICE_TYPE_CPU".

Edit 2: turning off secureboot fixed it.

you are viewing a single comment's thread
view the rest of the comments

[–] greevar@lemmy.world 18 points 1 week ago (1 children)

Secureboot isn't worth the 1's and 0's it's made of. It's the illusion of security, since it was already defeated. It only inhibits incompetent hackers and malware. The weakest link in all computer security is always the user. SB just causes more problems than solutions.

[–] Auth@lemmy.world -4 points 1 week ago (3 children)

this is really stupid advice. Secureboot should be installed on laptop otherwise your device is as good as open. Sure it has some CVEs but its a big step up in security and its getting better and better on linux.

This performance issue is likely due to an issue with the driver not with secure boot itself. Maybe since it is an old driver it wasnt signed.

[–] savvywolf@pawb.social 5 points 1 week ago (2 children)

What advantage does secure boot have compared to full disk encryption? The only examples I've seen have been contrived evil maid attack that fails under scrutiny.

[–] Auth@lemmy.world 1 points 5 days ago (2 children)

Evil maid is one advantage but signed modules is another. Secure boot can prevent you from loading unsigned kernel modules once booted.

You basically need to have both or your computer is practically open for anyone who has physical access to the device.

For my desktop I dont use either but for my laptop i'd never leave home without both.

[–] savvywolf@pawb.social 1 points 5 days ago (1 children)

Once you're booted secure boot is inactive. If there was a security benefit to only loading signed modules, then distros would have that enabled by default regardless of the secure boot status.

Iirc, requiring modules be signed is a requirement Microsoft put on the shim bootloader rather than Lunux's choice. I could be mistaken here, I'm not too sure on the specifics.

Regardless, if someone has the ability to load or modify modules on an encrypted Linux install, they can just steal Firefox's cookie jar and cut out the intermediate step.

[–] Auth@lemmy.world 1 points 3 days ago (1 children)

I might be wrong on some of this so take it with a grain of salt but heres my view.

Its not only loading signed modules it enables kernel lockdown mode which prevents even the root user from accessing certain kernel functions. This prevents them from installing persistent malware and a host of other attacks. Fedora and other distros that ship secure boot do enable this.

Yes microsoft signs the shim but I believe other authorities are being worked on.

If someone gets root on your system they can do a lot of damage but you can still prevent it and limit it. Stealing my firefox cookies is much better than installing persistent malware. If my cookies are stolen I can clear the malware and reset my passwords, same cannot be said for loading something into the kernel.

[–] savvywolf@pawb.social 1 points 2 days ago

My gut reaction is that there are a lot of ways, once you have root access, to have your changes persistent. For example, modifying/replacing binaries, adding new ones before old ones in the path, adding startup scripts, modifying config files. Kernel modules seem to be an overcomplicated way to go about it, especially since (afaik) it would need to be compiled against the specific kernel version.

[–] AcornTickler@sh.itjust.works 1 points 1 week ago (1 children)

If you have to choose between one, then yes; full disk encryption is superior. But they should ideally be used in tandem.

Without secure boot, you are vulnerable to evil maid attacks. A bad actor can modify your bootloader (which has to remain unencrypted) in a way that allows them to steal your encryption keys. Secure Boot prevents running unsigned bootloaders, which negates this risk.

[–] savvywolf@pawb.social 2 points 6 days ago (1 children)

If someone has access to your device enough to modify your bootloader they could also just install a hardware keylogger or hidden camera and get your password that way.

[–] AcornTickler@sh.itjust.works 1 points 6 days ago (1 children)

Sure, but that's much harder to do undetected. Don't let perfect be the enemy of good. Secure Boot still prevents against particular types attacks.

[–] savvywolf@pawb.social 3 points 6 days ago

I get that perfect is the enemy of good, but you also need to have defined threat models. Secure boot protects against people covertly taking your ssd, putting it in their own device, overwriting the OS with one that looks identical but is a key logger, and then putting it back in your system. Yet systems with secure boot have no tooling to stop attackers from just... Putting a hardware keylogger inline with the keyboard.

[–] greevar@lemmy.world 4 points 1 week ago

I second SavvyWolf. Full disk encryption is better than SecureBoot. SB is security theater for people who don't know what they're doing and don't know how to avoid getting their laptop infected in the first place. As I said before, SB has already been defeated. Every hacker/malware can bypass it already. It's like pretending you have armor on and going headlong into a sword fight.