Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/cake-tech/autoforward-autoconvert

Python cron jobs to detect and forward incoming XMR to an address, and then convert to a specified asset using Kraken
https://github.com/cake-tech/autoforward-autoconvert

Last synced: 2 months ago
JSON representation

Python cron jobs to detect and forward incoming XMR to an address, and then convert to a specified asset using Kraken

Awesome Lists containing this project

README 

          
# Monero autoforward and autoconvert



These steps will allow you to set up a simple Monero wallet program that will automatically forward all received contents to another Monero wallet address. This is useful if you receive XMR with BTCPay Server and need to forward it to a static exchange address to sell. There is another cron job to autoconvert with Kraken.



## High level process



This is intended to run a fresh Ubuntu/Linux install.



The high-level process is:



1. Create/transfer a Monero wallet file

2. Run Monero Wallet RPC on the server

3. Set up a cron job to autoforward every X minutes

4. Set up a cron job to autoconvert every X minutes (or use BTC Transmuter)



## Prerequisities



### Spare server; can be super low spec



Basically any VPS will do. Do yourself a favor and use an SSD though. If you are using this for a critical production deployment, consider 2+ CPU cores for faster scanning.



### Installed python3



This could possibly work with other versions, but install the latest version of python.



`sudo apt update`



`sudo apt install python3`



### Installed latest [Monero CLI tools](https://getmonero.org/downloads/#cli)



You'll need monero-wallet-rpc, and possibly monero-wallet-cli.



### Installed Docker



```

sudo apt-get update && sudo apt-get upgrade -y

sudo apt-get install -y ufw curl

curl -fsSL https://get.docker.com -o get-docker.sh

sudo sh get-docker.sh

sudo usermod -aG docker $USER

su - $USER

```



### Hardened Firewall



Keep the bad guys out.



```

sudo ufw default deny incoming

sudo ufw default allow outgoing

sudo ufw allow ssh

sudo ufw enable

```



### For autoconvert: Kraken account



We recommend creating an [additional Kraken account](https://support.kraken.com/hc/en-us/articles/360001214163-Can-I-create-multiple-accounts-). This cron job will autoconvert all balances in this account to the specific asset.



You can optionally use an exchange that supports auto-convert functionality, for example one that auto converts XMR deposited into an address to USDC.



## Create/transfer a Monero wallet file



If you already have a Monero wallet file, then skip these steps and simply transfer your wallet file over to the server instead.



Run `monero-wallet-cli`



Create a new wallet name that you'll remember, such as `autoforward`. Choose a STRONG password, though if this box is compromised, people can steal any funds that are in the wallet at that point and any point in the future.



Make sure the wallet files have the proper permissions: `chmod 700 /path/to/file`



## Run Monero Wallet RPC on the server



We will use [Seth's](https://sethforprivacy.com) `simple-monero-wallet-rpc` Docker image. This will allow it to auto update and restart without any further modifications.



Change ``, `` (use the .keys file), and ``. Optionally change the daemon address to your own daemon.



```

docker run -d --restart unless-stopped --name="monero-wallet-rpc" -p 18081:18081 -v bitmonero:/home/monero sethsimmons/simple-monero-wallet-rpc:latest --rpc-bind-port=18081 --daemon-address=xmr-node.cakewallet.com:18081 --wallet-file=.keys --password= --rpc-login=monero:

docker run -d \

    --name watchtower --restart unless-stopped \

    -v /var/run/docker.sock:/var/run/docker.sock \

    containrrr/watchtower --cleanup

```



Confirm monero-wallet-rpc is started correctly by checking the logs: `docker logs --follow monero-wallet-rpc`



### Setting up a service instead



If you have issues using Docker (eg: unable to find the wallet file), I recommend manually configuring a service.



#### Initial setup (thanks SethForPrivacy)



```

# Create a system user and group to run monerod

sudo addgroup --system monero

sudo adduser --system --home /var/lib/monero --ingroup monero --disabled-login monero



# Create necessary directories for monerod

sudo mkdir /var/run/monero

sudo mkdir /var/log/monero

sudo mkdir /etc/monero



# Set permissions for new directories

sudo chown monero:monero /var/run/monero

sudo chown monero:monero /var/log/monero

sudo chown -R monero:monero /etc/monero

```



Edit the service script file: `nano /etc/systemd/system/autoforward.service`



Paste the following:



```

[Unit]

Description=Autoforwards with monero-wallet-rpc

After=network.target



[Service]

# Process management

####################



Type=forking

PIDFile=/var/run/monero/monerod.pid

ExecStart=/var/lib/monero/monero-wallet-rpc --rpc-bind-port=18081 --daemon-address=xmr-node.cakewallet.com:18081 --wallet-file=/var/lib/monero/autoforward.keys --password= --rpc-login=monero: --detach

Restart=on-failure

RestartSec=30



# Directory creation and permissions

####################################



# Run as monero:monero

User=monero

Group=monero



# /run/monero

RuntimeDirectory=monero

RuntimeDirectoryMode=0710



# /var/lib/monero

StateDirectory=monero

StateDirectoryMode=0710



# /var/log/monero

LogsDirectory=monero

LogsDirectoryMode=0710



# /etc/monero

ConfigurationDirectory=monero

ConfigurationDirectoryMode=0710



# Hardening measures

####################



# Provide a private /tmp and /var/tmp.

PrivateTmp=true



# Mount /usr, /boot/ and /etc read-only for the process.

ProtectSystem=full



# Deny access to /home, /root and /run/user

ProtectHome=true



# Disallow the process and all of its children to gain

# new privileges through execve().

NoNewPrivileges=true



[Install]

WantedBy=multi-user.target



```



Make sure to change the rpc file path, wallet .keys file path, wallet password, and RPC password.



I was unable to get the wallet to open if the wallet password was provided in a .conf file, so I needed to save the wallet password to the .service file. If you are getting errors about another user having access to the Monero .keys file, then change ownership of the file to the user and group you are running the command from.



Double-check to ensure that the autoforward files are owned by the `monero` user.



Restart systemctl:



`sudo systemctl daemon-reload`



`sudo systemctl enable autoforward`



`sudo systemctl start autoforward`



## Set up a cron job to autoforward every X minutes



First, decide how often you want the command to run. If you want to only forward occasionally, then setting it to every 60 minutes or even 24 hours may be fine. If you want the fastest performance, setting up forwarding every minute is reasonable.



Calculate the necessary operation for timings using [this website](https://crontab.guru). Here are some common ones:



```

*/5 * * * *`           every 5 minutes

0 */1 * * *`           every 1 hour

0 0 * * */1`           every 1 day

```



Save `autoforward-monero.py`, available in this repo. Make sure to change the address, password, and (if needed) index.



Find where python is on your device.



`type -a python3`



Set up the cron function to run this python command.



`crontab -e`



Append the following job:

 

`*/5 * * * * /usr/bin/python3 /var/lib/monero/autoforward-monero.py`



`/usr/bin/python3` is the location of your Python installation. Replace it and the monero-forwarder paths as necessary. Save the file.



Enable the cron service:



`sudo systemctl enable cron.service`



You're done! The cron task will run every 5 minutes, or whatever other duration you specified.



## Set up a cron job to autoconvert every X minutes



This uses Kraken. If you want to write a python script for another exchange, then we're happy to add it here!



### Create Kraken API key



[Click here](https://www.kraken.com/u/security/api/new), then create a new API key with the following parameters:



* Choose your own description.

* Leave the "Nonce window" as 0, unless you know why you want to change it.

* Enable "Query funds".

* Enable "Create and modify orders".

* Recommended: enable IP whitelisting, and add your VPS IP address as the only valid address. IPs can be changed latter without revoking the key.



### Configure cron job



Save `autoconvert-kraken-XXX-to-XXX.py` (selecting your convert from and convert to assets as desired), available in this repo. Make sure to add `API_KEY_KRAKEN` and `API_SEC_KRAKEN`. If your specific convert to and convert from assets aren't supported, use one as a template and modify, or open an issue to request it.



Find where python is on your device.



`type -a python3`



Set up the cron function to run this python command.



`crontab -e`



Append the following job:

 

`*/5 * * * * /usr/bin/python3 /root/autoconvert-kraken.py`



`/usr/bin/python3` is the location of your Python installation. Replace it and the autoconvert-kraken paths as necessary. Save the file.



Enable the cron service:



`sudo systemctl enable cron.service`



You're done! The cron task will run every 5 minutes, or whatever other duration you specified.



Trading will not occur if the balance (and thus the trade size) is below the [minimum order size](https://support.kraken.com/hc/en-us/articles/205893708-What-is-the-minimum-order-size-). As of 2022-12-07, this is 0.02 XMR and 0.0001 BTC.



# Credits



Thanks to [Seth](https://sethforprivacy.com) for their docker image, and the initial instructions about Monero node/service hardening.