An arbitrary list of items such as derivations

Description of this unit used in systemd messages and progress indicators.

Whether to enable socket activation for Erlang Port Mapper Daemon (epmd), which acts as a name server on all hosts involved in distributed Erlang computations.

An arbitrary list of items such as derivations

Whether to support proxying websocket connections with HTTP/1.1.

Configure unit start rate limiting

UNIX domain socket path to bind.

This optional key can be used to request that the datagram socket join a multicast group

Description of this unit used in systemd messages and progress indicators.

This optional key specifies the protocol to be passed to socket(2)

Specify path to the control socket used for connection sharing.

This optional key tells launchctl what type of socket to create

Port number to listen on

This optional key can be used to request that the datagram socket join a multicast group

A short human-readable label of the unit.

This optional key can be used to request that the datagram socket join a multicast group

This optional key can be used to specifically request that "IPv4" or "IPv6" socket(s) be created.

This optional key specifies the mode of the socket

This optional key tells launchctl what type of socket to create

This optional key tells launchctl what type of socket to create

Resolution refresh time for the target socket, in seconds.

User name who owns the socket file.

This optional key can be used to specifically request that "IPv4" or "IPv6" socket(s) be created.

This optional key specifies the mode of the socket

This optional key can be used to specifically request that "IPv4" or "IPv6" socket(s) be created.

This optional key is a variant of SockPathName

Whether to support proxying websocket connections with HTTP/1.1.

This optional key specifies the mode of the socket

Wait for DNS

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Group name who owns the socket file.

Address on which spiped should listen for incoming connections

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Create an individual listening socket

Whether control socket should remain open in the background.

This optional key specifies the protocol to be passed to socket(2)

Frequency at which the client will send websocket ping to the server.

Frequency at which the client will send websocket ping to the server.

The agent's socket; interpreted as a suffix to $XDG_RUNTIME_DIR on Linux and $(getconf DARWIN_USER_TEMP_DIR) on macOS.

A list of URIs referencing documentation for this unit or its configuration.

Name of the user on the MySQL/MariaDB server

This optional key specifies the protocol to be passed to socket(2)

This optional key specifies the protocol to be passed to socket(2)

Defines how unit configuration is provided for systemd:

asDropinIfExists creates a unit file when no unit file is provided by the package otherwise it creates a drop-in file named overrides.conf.

asDropin creates a drop-in file named overrides.conf

A list of URIs referencing documentation for this unit or its configuration.

Port number to listen on

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Defines how unit configuration is provided for systemd:

asDropinIfExists creates a unit file when no unit file is provided by the package otherwise it creates a drop-in file named overrides.conf.

asDropin creates a drop-in file named overrides.conf

Whether to support proxying websocket connections with HTTP/1.1.

List of URIs referencing documentation for the unit.

Path to a socket (bind-addr will be ignored).

This optional key is a variant of SockPathName

Whether to support proxying websocket connections with HTTP/1.1.

This optional key is a variant of SockPathName

This optional key is a variant of SockPathName

Local UDP port for IKE communication

Whether to support proxying websocket connections with HTTP/1.1.

The agent's socket; interpreted as a suffix to $XDG_RUNTIME_DIR on Linux and $(getconf DARWIN_USER_TEMP_DIR) on macOS

Unix command socket that can be used to pass commands to Suricata

The TCP address or UNIX socket path to listen on.

Whether to support proxying websocket connections with HTTP/1.1.

Whether to support proxying websocket connections with HTTP/1.1.

Socket to bind to

Create an individual listening socket

You can use the following variables:

%1 : file name

%2 : server name

%3 : socket ID

See Customizing editor on the Astroid wiki.

Socket which is used for communication with OpenDKIM.

Hardened service:

• runs as a dedicated user with minimal set of permissions (see caveats),
• restricts daemon configuration socket access to dedicated user group (you can grant access to it with users.users."<user>".extraGroups = [ netbird-‹name› ]),

Even though the local system resources access is restricted:

• CAP_NET_RAW, CAP_NET_ADMIN and CAP_BPF still give unlimited network manipulation possibilites,
• older kernels don't have CAP_BPF and use CAP_SYS_ADMIN instead,

Known security features that are not (yet) integrated into the module:

• 2024-02-14: rosenpass is an experimental feature configurable solely through --enable-rosenpass flag on the netbird up command, see the docs

Hardened service:

• runs as a dedicated user with minimal set of permissions (see caveats),
• restricts daemon configuration socket access to dedicated user group (you can grant access to it with users.users."<user>".extraGroups = [ netbird-‹name› ]),

Even though the local system resources access is restricted:

• CAP_NET_RAW, CAP_NET_ADMIN and CAP_BPF still give unlimited network manipulation possibilites,
• older kernels don't have CAP_BPF and use CAP_SYS_ADMIN instead,

Known security features that are not (yet) integrated into the module:

• 2024-02-14: rosenpass is an experimental feature configurable solely through --enable-rosenpass flag on the netbird up command, see the docs

Ensures that the specified users exist and have at least the ensured permissions

Whether to support proxying websocket connections with HTTP/1.1.

Path to the unix socket file to use for authentication.

Name of directory from which to import ZFS device, this is passed to zpool import as the value of the -d option

File mode of the socket.

Whether to support proxying websocket connections with HTTP/1.1.

Path to the unix socket file to use for authentication.

Arbitrary unique number 1..255

Path to the unix socket file to use for authentication.

Filename for unix-command socket.

The UNIX socket your Misskey server should listen on.

Path to the unix socket file to use for authentication.

Path to the unix socket file to use for authentication.

Path where the socket should be created when protocol=socket

If specified, creates a UNIX socket at the given path that Sharkey listens on.

Path to the unix socket file to use for authentication.

Default location for the Mattermost control socket used by mmctl.

The unix socket for the gancio server to listen on.

Path to the unix socket file to use for authentication.