I'm trying to use xmrig without running as root, I'm running the msr optimization script manually and it's telling me it applied the changes but the hashrate is about half of what it is when I run as root

I've somehow got it to work playing with wrmsr myself

I find it kinda weird that it's suggested to just run xmrig as root solely for the MSR mod, seems like poor security advice. Does xmrig drop it's own capabilities after applying the MSR mod or does it stay elevated?

<torir:unredacted.org> You can run with --randomx-no-rdmsr so xmrig doesn't revert the values on exit. Try sudo xmrig --randomx-no-rdmsr --bench 1M and ctrl-c immediately to set the values without connecting to a server.

That's helpful, thanks. I got it to work but now I'm more curious why it was chosen to suggest running xmrig as root.

<torir:unredacted.org> For convenience, I assume.

Blowing your foot off with a shotgun is also a convenient way to untie your shoe :p

Maybe I'll talk to some xmrig lead, just seems very misguided in my opinion

<torir:unredacted.org> People with dedicated miners don't really care much if the computer gets hacked. It's going to be very difficult to hack someone's computer with xmrig in the first place, and if it happens you can wipe the machine and start again. Dedicated mining machines don't need to be super hardened.

<torir:unredacted.org> Obviously, yes, it would be ideal for xmrig to run as non-root, but it doesn't factor much into the threat models of most of the people running it.

I'd say that's a very naive and harmful view on it. Not everyone has a dedicated mining computer. Running any network facing program as root is just asking for trouble, vulnerabilities happen sooner or later.

For such an unintegral part of the program to rely on elevated privledge but then to maintain that high status even when it's unneeded just seems like such a solvable problem.

And it's not like they don't use AI either, on the contrary. <- Oh, didn't know that. Were they called out on that?!

<ofrnxmr:xmr.mx> No

XMRBazaar too, for example, used AI generated images for the banners. <- Yeah, that's like my biggest issue with them (that and how the vendors use slop as well and there's no option to turn it off on your end). What really disgusts/saddens me is that they did hold a competition for banners, yet at least some of the submissions were themselves slop. I was really tempted to register myself and go

through the submissions pointing out the proofs of why each is sludge.

<ofrnxmr:xmr.mx> Its run by a single person. The diff between moneroica and kycnot.me, is that moneroica tyoically lists first, and verifies later

<ofrnxmr:xmr.mx> You can see which listings are verified or recommended. Whereas kycnot, hides unverified submissions unless you specifically filter for them

Ah.

Yeah that makes sense.

<pyratevevo:matrix.org> @ofrnxmr:xmr.mx: I don't think that's the issue here.

<pyratevevo:matrix.org> I'm pretty sure the Monerica guy will keep the slop websites even after verification.

I really like that kycnot.me has a comment section now. IDK how much astroturfing is going on there, but still nice.

In general, how long would it take to purchase xmr via cash-by-mail? Whats the typical cut for the seller?

hopefully thats okay to discuss here.

I'm just getting sick of coinbase giving me 5 day holds for small amounts.

btw cash by mail can be illegal where you are, check your local laws

Its legal in my jurisdiction

Hows the stresstests going

finally got monero and p2pool nodes working with tor and i2p :P