| options/nixos/services.ulogd.enable | Whether to enable ulogd, a userspace logging daemon for netfilter/iptables related logging.
|
| options/nixos/services.netbird.tunnels.<name>.hardened | Hardened service:
- runs as a dedicated user with minimal set of permissions (see caveats),
- restricts daemon configuration socket access to dedicated user group
(you can grant access to it with
users.users."<user>".extraGroups = [ netbird-‹name› ]),
Even though the local system resources access is restricted:
CAP_NET_RAW, CAP_NET_ADMIN and CAP_BPF still give unlimited network manipulation possibilites,- older kernels don't have
CAP_BPF and use CAP_SYS_ADMIN instead,
Known security features that are not (yet) integrated into the module:
- 2024-02-14:
rosenpass is an experimental feature configurable solely
through --enable-rosenpass flag on the netbird up command,
see the docs
|
| options/nixos/services.netbird.clients.<name>.hardened | Hardened service:
- runs as a dedicated user with minimal set of permissions (see caveats),
- restricts daemon configuration socket access to dedicated user group
(you can grant access to it with
users.users."<user>".extraGroups = [ netbird-‹name› ]),
Even though the local system resources access is restricted:
CAP_NET_RAW, CAP_NET_ADMIN and CAP_BPF still give unlimited network manipulation possibilites,- older kernels don't have
CAP_BPF and use CAP_SYS_ADMIN instead,
Known security features that are not (yet) integrated into the module:
- 2024-02-14:
rosenpass is an experimental feature configurable solely
through --enable-rosenpass flag on the netbird up command,
see the docs
|
| options/nixos/security.tpm2.abrmd.enable | Whether to enable Trusted Platform 2 userspace resource manager daemon
.
|
| options/nixos/services.scx.enable | Whether to enable SCX service, a daemon to run schedulers from userspace.
This service requires a kernel with the Sched-ext feature
|
| options/nixos/networking.ucarp.enable | Whether to enable ucarp, userspace implementation of CARP.
|
| options/nixos/hardware.openrazer.enable | Whether to enable OpenRazer drivers and userspace daemon
.
|
| options/nixos/services.kmscon.enable | Whether to enable kmscon as the virtual console instead of gettys.
kmscon is a kms/dri-based userspace virtual terminal implementation
|
| options/nixos/services.tee-supplicant.enable | Whether to enable OP-TEE userspace supplicant.
|
| options/nixos/services.hardware.bolt.enable | Whether to enable Bolt, a userspace daemon to enable
security levels for Thunderbolt 3 on GNU/Linux
|
| options/nixos/services.esdm.enableLinuxCompatServices | Enable /dev/random, /dev/urandom and /proc/sys/kernel/random/* userspace wrapper.
|
| options/nixos/services.tailscale.interfaceName | The interface name for tunnel traffic
|
| options/nixos/programs.ryzen-monitor-ng.enable | Whether to enable ryzen_monitor_ng, a userspace application for setting and getting Ryzen SMU (System Management Unit) parameters via the ryzen_smu kernel driver
|
| options/nixos/programs.nix-required-mounts.presets.nvidia-gpu.enable | Whether to enable Declare the support for derivations that require an Nvidia GPU to be
available, e.g. derivations with requiredSystemFeatures = [ "cuda" ]
|
| options/nixos/virtualisation.qemu.networkingOptions | Networking-related command-line options that should be passed to qemu
|
| options/nixos/services.suricata.settings.dpdk | Data Plane Development Kit is a framework for fast packet processing in data plane applications running on a wide variety of CPU architectures
|
| options/nixos/networking.wireguard.interfaces.<name>.peers.*.endpoint | Endpoint IP or hostname of the peer, followed by a colon,
and then a port number of the peer
|
| packages/nixpkgs/zeitgeist | Service which logs the users’s activities and events |
| packages/nixpkgs/ucarp | Userspace implementation of CARP |
| packages/nixpkgs/criu | Userspace checkpoint/restore for Linux |
| packages/nixpkgs/python312Packages.zeitgeist | Service which logs the users’s activities and events |
| packages/nixpkgs/python313Packages.zeitgeist | Service which logs the users’s activities and events |
| packages/nixpkgs/python314Packages.zeitgeist | Service which logs the users’s activities and events |
| packages/nixpkgs/mpvScripts.quality-menu | Userscript for MPV that allows you to change youtube video quality (ytdl-format) on the fly |
| packages/nixpkgs/mpvScripts.youtube-upnext | Userscript that allows you to play 'up next'/recommended youtube videos |
| packages/nixpkgs/vdo | Set of userspace tools for managing pools of deduplicated and/or compressed block storage |
| packages/nixpkgs/zfs_2_4 | ZFS Filesystem Linux Userspace Tools |
| packages/nixpkgs/umr | Userspace debugging and diagnostic tool for AMD GPUs |
| packages/nixpkgs/zfs | ZFS Filesystem Linux Userspace Tools |
| packages/nixpkgs/asahi-audio | Linux userspace audio configuration for Apple Silicon Macs |
| packages/nixpkgs/ipu6-camera-hal | HAL for processing of images in userspace |
| packages/nixpkgs/lttng-ust | LTTng Userspace Tracer libraries |
| packages/nixpkgs/fsverity-utils | Set of userspace utilities for fs-verity |
| packages/nixpkgs/drbd | Distributed Replicated Block Device, a distributed storage system for Linux (userspace utilities) |
| packages/nixpkgs/acpid | Daemon for delivering ACPI events to userspace programs |
| packages/nixpkgs/ulogd | Userspace logging daemon for netfilter/iptables |
| packages/nixpkgs/zfs_2_3 | ZFS Filesystem Linux Userspace Tools |
| packages/nixpkgs/mmc-utils | Configure MMC storage devices from userspace |
| packages/nixpkgs/iptsd | Userspace daemon for Intel Precise Touch & Stylus |
| packages/nixpkgs/libnbd | Network Block Device client library in userspace |
| packages/nixpkgs/zfs_2_2 | ZFS Filesystem Linux Userspace Tools |
| packages/nixpkgs/ipu6ep-camera-hal | HAL for processing of images in userspace |
| packages/nixpkgs/lxc | Userspace tools for Linux Containers, a lightweight virtualization system |
| packages/nixpkgs/lockdep | Userspace locking validation tool built on the Linux kernel |
| packages/nixpkgs/librseq | Userspace library for the Linux Restartable Sequence API |
| packages/nixpkgs/logiops | Unofficial userspace driver for HID++ Logitech devices |
| packages/nixpkgs/lttng-ust_2_12 | LTTng Userspace Tracer libraries |
| packages/nixpkgs/afuse | Automounter in userspace |
| packages/nixpkgs/aefs | Cryptographic filesystem implemented in userspace using FUSE |
| packages/nixpkgs/trickle | Lightweight userspace bandwidth shaper |
| packages/nixpkgs/joycond | Userspace daemon to combine joy-cons from the hid-nintendo kernel driver |
| packages/nixpkgs/ksmbd-tools | Userspace utilities for the ksmbd kernel SMB server |
| packages/nixpkgs/bridge-utils | Userspace tool to configure linux bridges (deprecated in favour or iproute2) |
| packages/nixpkgs/zfs_unstable | ZFS Filesystem Linux Userspace Tools |
| packages/nixpkgs/xwiimote | Userspace utilities to control connected Nintendo Wii Remotes |
| packages/nixpkgs/linuxPackages.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/ocamlPackages.nbd | Network Block Device client library in userspace |
| packages/nixpkgs/libnftnl | Userspace library providing a low-level netlink API to the in-kernel nf_tables subsystem |
| packages/nixpkgs/libsepol | SELinux binary policy manipulation library |
| packages/nixpkgs/linuxPackages_zen.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/linuxPackages_lqx.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/liburcu | Userspace RCU (read-copy-update) library |
| packages/nixpkgs/boringtun | Userspace WireGuard® implementation in Rust |
| packages/nixpkgs/can-utils | CAN userspace utilities and tools (for use with Linux SocketCAN) |
| packages/nixpkgs/scx.full | Sched-ext C and Rust userspace schedulers |
| packages/nixpkgs/libusbgx | C library encapsulating the kernel USB gadget-configfs userspace API functionality |
| packages/nixpkgs/liburing | Userspace library for the Linux io_uring API |
| packages/nixpkgs/semodule-utils | SELinux policy core utilities (packaging additions) |
| packages/nixpkgs/linuxPackages_latest.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/linuxPackages_xanmod.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/erofs-utils | Userspace utilities for linux-erofs file system |
| packages/nixpkgs/ocamlPackages_latest.nbd | Network Block Device client library in userspace |
| packages/nixpkgs/ipu6epmtl-camera-hal | HAL for processing of images in userspace |
| packages/nixpkgs/amneziawg-go | Userspace Go implementation of AmneziaWG |
| packages/nixpkgs/wireguard-go | Userspace Go implementation of WireGuard |
| packages/nixpkgs/conntrack-tools | Connection tracking userspace tools |
| packages/nixpkgs/python312Packages.libnbd | Network Block Device client library in userspace |
| packages/nixpkgs/libedgetpu | Userspace level runtime driver for Coral devices |
| packages/nixpkgs/scx.cscheds | Sched-ext C userspace schedulers |
| packages/nixpkgs/rdma-core | RDMA Core Userspace Libraries and Daemons |
| packages/nixpkgs/exfatprogs | exFAT filesystem userspace utilities |
| packages/nixpkgs/python313Packages.libnbd | Network Block Device client library in userspace |
| packages/nixpkgs/python314Packages.libnbd | Network Block Device client library in userspace |
| packages/nixpkgs/memtester | Userspace utility for testing the memory subsystem for faults |
| packages/nixpkgs/logiops_0_2_3 | Unofficial userspace driver for HID++ Logitech devices |
| packages/nixpkgs/python313Packages.ds4drv | Userspace driver for the DualShock 4 controller |
| packages/nixpkgs/python314Packages.ds4drv | Userspace driver for the DualShock 4 controller |
| packages/nixpkgs/selinux-refpolicy | SELinux Reference Policy v2 |
| packages/nixpkgs/linuxKernel.packages.linux_5_4.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/libsemanage | Policy management tools for SELinux |
| packages/nixpkgs/checkpolicy | SELinux policy compiler |
| packages/nixpkgs/linuxKernel.packages.linux_6_1.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/linuxKernel.packages.linux_6_6.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/linuxKernel.packages.linux_zen.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/linuxKernel.packages.linux_lqx.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/linuxKernel.packages.linux_6_17.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/linuxKernel.packages.linux_5_15.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/linuxKernel.packages.linux_5_10.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/linuxKernel.packages.linux_6_18.iio-utils | Userspace tool for interacting with Linux IIO |
| packages/nixpkgs/linuxKernel.packages.linux_6_19.iio-utils | Userspace tool for interacting with Linux IIO |