Hostname of a waiting vpicc server vpcd will be connecting to

Prometheus Alertmanager URL

• menu shows the menu.
• countdown uses a text-mode countdown.
• hidden hides GRUB entirely

Override the hjkl and HJKL bindings for pane navigation and resizing in VI mode.

Set to true for unauthenticated emergency access, and false or null for no emergency access

Enables whitelist mode.

Start a desktop environment instead of seamless mode

If the mode is set to "file", the path to a HuJSON file containing ACL policies.

Postswitch hook executed after mode switch.

Don't allow users to connect in non-secure mode (without random padding).

The hosts.hfaxd file entry in the spooling area will be symlinked to the location given here

Whether to generate the password files at build time and store them directly in the system closure, without requiring any services at boot time

The permissions of the wrapper program

For smtp, the sendmail binary is started with the parameter -bs: Use the SMTP protocol on standard input and output

Whether to enable starting teleport in insecure mode

Whether to enable debug mode.

Reduce storage requirements by enabling pruning (deleting) of old blocks

Enable debug mode.

If set, Nix will perform builds in a sandboxed environment that it will set up automatically for each build

Configures how Athens will return the results of the /list endpoint as it can be assembled from both its own storage and the upstream VCS

Whether to run QEMU with a graphics window, or in nographic mode

An array of string values each providing an address and port on which the RTR server should listen in TCP mode

If given an IP address, it can be a host name ("localhost"), an IPv4 dotted-quad ("127.0.0.1") or an IPv6 address enclosed in square brackets ("[::1]").

(VCL4.1 and higher) If given an absolute Path ("/path/to/listen.sock") or "@" followed by the name of an abstract socket ("@myvarnishd") accept connections on a Unix domain socket

Set X-Auth-Request-User and X-Auth-Request-Email response headers (useful in Nginx auth_request mode)

An integer value specifying the number of seconds Routinator should wait between consecutive validation runs in server mode

Whether to enable debug mode.

Preswitch hook executed before mode switch.

Whether to enable high bandwidth mode on LAN servers

Whether to restrict access to information such as health, ammo and armour in spectator mode.

Whether to run in snapshot only mode

Specify what to do when a client goes inactive (see services.teeworlds.server.inactiveTime).

• spectator: send the client into spectator mode

• spectator/kick: send the client into a free spectator slot, otherwise kick the client

• kick: kick the client

This option allows you to define APs for one or multiple physical radios

The framebuffer resolution to set when booting Linux entries

List of custom lovelace card packages to load as lovelace resources

Runs container in ephemeral mode with the empty root filesystem at boot

Postswitch hook executed after mode switch.

If set to false, run lightdm in greeterless mode

The shell (/bin/sh) command executed once the proxy starts

If specified, the OCS Inventory Agent will run in offline mode and the resulting inventory file will be stored in the specified path.

Disable the DHCP client for any interface whose name matches any of the shell glob patterns in this list

Grant capabilities to the uWSGI instance

Sets transmission's file mode creation mask

Prometheus Alertmanager URL

Set the DNS (resolv.conf) processing mode

The permissions of the wrapper program

List of integrations set are always set up, unless in recovery mode.

Performs a reverse path filter test on a packet

The minimum time to pause between successive queue runs when there are messages in the queue, in seconds

ESP proposals to offer for the CHILD_SA

If set to

• "true": all DNS lookups will be encrypted

Whether to enable VictoriaMetrics in single-node mode

This option enables docker in a rootless mode, a daemon that manages linux containers

Enables extended logs for debugging purposes

Whether to enable verbose logging mode for prometheus-wireguard-exporter.

Allows the generation of a private key and associated self-signed certificate

For target type static: List of GRPC targets to connect to for clustering mode.

Enables single account mode

If set to true, disables single account mode

Enable low-power encoding mode for Intel Quick Sync Video

The ASCII and UTF-8 output width, default is 78

Whether to enable seamless mode

Preemption mode.

Kubernetes apiserver authorization mode (AlwaysAllow/AlwaysDeny/ABAC/Webhook/RBAC/Node)

List of virtual IPs to request in IKEv2 configuration payloads or IKEv1 Mode Config

Preemption mode.

Additional configuration for the WirePlumber daemon when run in single-instance mode (the default in nixpkgs and currently the only supported way to run WirePlumber configured via extraConfig)

Access mode. proxy or direct (Server or Browser in the UI)

Enable WAL mode for SQLite

Whether to copy the DF bit to the outer IPv4 header in tunnel mode

Sets the password for WPA-PSK

Whether to copy the ECN (Explicit Congestion Notification) header field to/from the outer IP header in tunnel mode

The security model to use for this share:

• passthrough: files are stored using the same credentials as they are created on the guest (this requires QEMU to run as root)
• mapped-xattr: some of the file attributes like uid, gid, mode bits and link target are stored as file attributes
• mapped-file: the attributes are stored in the hidden .virtfs_metadata directory

Sets allowed passwords for WPA3-SAE

The system-wide memory allocator

Sets the password for WPA-PSK that will be converted to the pre-shared key

Sets the password for WPA3-SAE

Enable hardware offload for this CHILD_SA, if supported by the IPsec implementation

Whether to copy the DSCP (Differentiated Services Field Codepoint) header field to/from the outer IP header in tunnel mode

Sets the password(s) for WPA-PSK

A proposal is a set of algorithms

AH proposals to offer for the CHILD_SA

Authentication to perform locally.

• The default pubkey uses public key authentication using a private key associated to a usable certificate.
• psk uses pre-shared key authentication.
• The IKEv1 specific xauth is used for XAuth or Hybrid authentication,
• while the IKEv2 specific eap keyword defines EAP authentication.
• For xauth, a specific backend name may be appended, separated by a dash

The host to use if the container is in host networking mode

Set to true to add the Content-Security-Policy-Report-Only header to your requests

Download these models using ollama pull as soon as ollama.service has started

Disallow ModemManager from interfering with serial connections that QGroundControl might use

Whether to enable Draupnir, a moderations bot for Matrix.

Whether to enable Mjolnir, a moderation tool for Matrix.

Whether to enable Tiny, portable SOCKS5 server with very moderate resource usage.

If set, the MUC rooms will be moderated by default.

Area code for server and all modems.

Paths to directories with custom wake word models (*.tflite model files).

The content of rtorrent.rc

List of packages containing EDID binary files at $out/lib/firmware/edid

Country code for server and all modems.

The room ID or alias where moderators can use the bot's functionality

Long distance prefix for server and all modems.

Whether to enable NVIDIA Optimus support using the NVIDIA proprietary driver via PRIME

Whether to enable NVIDIA Optimus support using the NVIDIA proprietary driver via reverse PRIME

Whether to enable Quectel EG25 modem manager service.