Running closed source miners in isolated environments

soos · December 16, 2016, 8:59pm

To restrict access to sensitive data you can run closed source miners in isolated environments.
For example, to run Optiminer in Bubblewrap isolation you can run the following:

bwrap \
	--proc /proc \
	--dev /dev \
	--ro-bind /sys /sys \
	--ro-bind /usr/lib /usr/lib \
	--ro-bind /lib64 /lib64 \
	--ro-bind /etc/resolv.conf /etc/resolv.conf \
	--ro-bind /etc/OpenCL/vendors /etc/OpenCL/vendors \
	--dev-bind /dev /dev \
	--ro-bind /tmp/optiminer-zcash/ /optiminer \
	--chdir /optiminer \
    	/optiminer/optiminer-zcash -s SERVER -u USER -p PASS

You can also use the following to isolate:

systemd service
flatpak
snap

Has anyone tried to run miners in some kind of isolation? Please share.

privatenode · December 17, 2016, 12:47pm

its good idea to run closed source or any software in an isolated or emulated enviroments, until you verify that software will do you no harm.

but still, a professional mine rig would only runs its own task as “Mining”, so keep your software sources “Clean” , don’t use software from untrusted or source you are not sure with.

best luck, happy mining