| services.chrony.initstepslew.enabled | DEPRECATED
|
| services.i2pd.proto.http.auth | Whether to enable webconsole authentication.
|
| nix.sshServe.write | Whether to enable writing to the Nix store as a remote store via SSH
|
| services.croc.debug | Whether to enable debug logs.
|
| services.minidlna.settings.enable_tivo | Support for streaming .jpg and .mp3 files to a TiVo supporting HMO.
|
| services.fastnetmon-advanced.enableAdvancedTrafficPersistence | Store historical flow data in clickhouse
|
| programs.nekoray.tunMode.setuid | Whether to enable setting suid bit for nekobox_core to run as root, which is less
secure than default setcap method but closer to upstream assumptions
|
| services.tt-rss.plugins | List of plugins to load automatically for all users
|
| services.odoo.autoInit | Whether to enable automatically initialize the DB.
|
| services.suricata.settings.app-layer.protocols.<name>.enabled | The option "enabled" takes 3 values - "yes", "no", "detection-only".
"yes" enables both detection and the parser, "no" disables both, and
"detection-only" enables protocol detection only (parser disabled).
|
| services.nextcloud.settings."profile.enabled" | Makes user-profiles globally available under nextcloud.tld/u/user.name
|
| services.onlyoffice.wopi | Whether to enable Enable WOPI support.
|
| services.radicle.httpd.nginx.http2 | Whether to enable the HTTP/2 protocol
|
| services.rutorrent.plugins | List of plugins to enable
|
| services.avahi.debug | Whether to enable debug logging.
|
| services.i2pd.logCLFTime | Whether to enable full CLF-formatted date and time to log.
|
| security.auditd.plugins.<name>.active | Whether to enable Whether to enable this plugin.
|
| services.nixseparatedebuginfod2.enable | Whether to enable nixseparatedebuginfod2, a debuginfod server providing source and debuginfo for nix packages.
|
| services.minidlna.settings.enable_subtitles | Enable subtitle support on unknown clients.
|
| programs.i3lock.u2fSupport | Whether to enable U2F support in the i3lock program
|
| services.veilid.settings.client_api.ipc_enabled | veilid-server will respond to Python and other JSON client requests.
|
| services.sftpgo.settings.httpd.bindings.*.enable_web_admin | Enable the built-in web admin for this interface binding.
|
| services.dolibarr.nginx.http2 | Whether to enable the HTTP/2 protocol
|
| services.fediwall.nginx.http2 | Whether to enable the HTTP/2 protocol
|
| services.agorakit.nginx.http2 | Whether to enable the HTTP/2 protocol
|
| services.kanboard.nginx.http2 | Whether to enable the HTTP/2 protocol
|
| services.librenms.nginx.http2 | Whether to enable the HTTP/2 protocol
|
| services.pixelfed.nginx.http2 | Whether to enable the HTTP/2 protocol
|
| services.mainsail.nginx.http2 | Whether to enable the HTTP/2 protocol
|
| services.gollum.math | Enable support for math rendering using KaTeX
|
| services.avahi.wideArea | Whether to enable wide-area service discovery.
|
| services.arsenik.lt | Enable layer-taps.
|
| services.vwifi.client.spy | Whether to enable spy mode, useful for wireless monitors.
|
| services.geth.<name>.http.apis | APIs to enable over WebSocket
|
| services.nsd.bind8Stats | Whether to enable BIND8 like statistics.
|
| services.i2pd.trust.hidden | Whether to enable router concealment.
|
| services.arsenik.hrm | Enable homerow.
|
| hardware.nvidia.open | Whether to enable the open source NVIDIA kernel module.
|
| programs.java.binfmt | Whether to enable binfmt to execute java jar's and classes.
|
| containers.<name>.enableTun | Allows the container to create and setup tunnel interfaces
by granting the NET_ADMIN capability and
enabling access to /dev/net/tun.
|
| services.nsd.roundRobin | Whether to enable round robin rotation of records.
|
| services.k3s.selinux | Enable SELinux in containerd.
|
| console.earlySetup | Enable setting virtual console options as early as possible (in initrd).
|
| services.davis.nginx.quic | Whether to enable the QUIC transport protocol
|
| services.movim.nginx.quic | Whether to enable the QUIC transport protocol
|
| services.slskd.nginx.quic | Whether to enable the QUIC transport protocol
|
| services.nextcloud.settings.enabledPreviewProviders | The preview providers that should be explicitly enabled.
|
| services.zabbixWeb.nginx.virtualHost.http2 | Whether to enable the HTTP/2 protocol
|
| programs.neovim.withRuby | Enable Ruby provider.
|
| services.pfix-srsd.domain | The domain for which to enable srs
|
| services.gns3-server.log.debug | Whether to enable debug logging.
|
| services.wivrn.autoStart | Whether to enable starting the service by default.
|
| services.hostapd.radios.<name>.networks.<name>.authentication.enableRecommendedPairwiseCiphers | Additionally enable the recommended set of pairwise ciphers
|
| services.murmur.dbus | Enable D-Bus remote control
|
| services.rss-bridge.config.system.enabled_bridges | Only enabled bridges are available for feed production
|
| boot.loader.grub.forceInstall | Whether to try and forcibly install GRUB even if problems are
detected
|
| services.anuko-time-tracker.nginx.http2 | Whether to enable the HTTP/2 protocol
|
| services.snipe-it.nginx.quic | Whether to enable the QUIC transport protocol
|
| services.cassandra.remoteJmx | Cassandra ships with JMX accessible only from localhost
|
| programs.neovim.withNodeJs | Enable Node provider.
|
| programs.kde-pim.merkuro | Whether to enable Merkuro.
|
| programs.kde-pim.kontact | Whether to enable Kontact.
|
| services.sftpgo.settings.httpd.bindings.*.enable_web_client | Enable the built-in web client for this interface binding.
|
| services.ncps.cache.lock.retry.jitter | Enable jitter in retry delays to prevent thundering herd.
|
| services.davis.nginx.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| services.movim.nginx.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| services.slskd.nginx.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| services.ebusd.mqtt.retain | Whether to enable set the retain flag on all topics instead of only selected global ones.
|
| services.hedgedoc.settings.useSSL | Enable to use SSL server.
|
| services.cyrus-imap.debug | Whether to enable debugging messages for the Cyrus master process.
|
| services.hockeypuck.settings | Configuration file for hockeypuck, here you can override
certain settings (loglevel and
openpgp.db.dsn) by just setting those values
|
| services.bookstack.nginx.http2 | Whether to enable the HTTP/2 protocol
|
| services.davis.nginx.onlySSL | Whether to enable HTTPS and reject plain HTTP connections
|
| services.movim.nginx.onlySSL | Whether to enable HTTPS and reject plain HTTP connections
|
| services.slskd.nginx.onlySSL | Whether to enable HTTPS and reject plain HTTP connections
|
| services.snipe-it.nginx.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| services.ente.web.domains.api | The domain under which the api is served
|
| services.postfix.useSrs | Whether to enable sender rewriting scheme
|
| services.i2pd.reseed.verify | Whether to enable SU3 signature verification.
|
| users.users.<name>.shell | The path to the user's shell
|
| services.nezha-agent.debug | Whether to enable verbose log.
|
| services.davis.nginx.listen.*.ssl | Enable SSL.
|
| services.slskd.nginx.listen.*.ssl | Enable SSL.
|
| services.movim.nginx.listen.*.ssl | Enable SSL.
|
| services.davis.nginx.kTLS | Whether to enable kTLS support
|
| services.movim.nginx.kTLS | Whether to enable kTLS support
|
| services.slskd.nginx.kTLS | Whether to enable kTLS support
|
| services.snipe-it.nginx.onlySSL | Whether to enable HTTPS and reject plain HTTP connections
|
| services.gancio.nginx.quic | Whether to enable the QUIC transport protocol
|
| services.akkoma.nginx.quic | Whether to enable the QUIC transport protocol
|
| services.fluidd.nginx.quic | Whether to enable the QUIC transport protocol
|
| services.matomo.nginx.quic | Whether to enable the QUIC transport protocol
|
| services.monica.nginx.quic | Whether to enable the QUIC transport protocol
|
| services.murmur.logToFile | Whether to enable logging to a file instead of journald, which is stored in /var/log/murmur.
|
| services.snipe-it.nginx.listen.*.ssl | Enable SSL.
|
| services.snipe-it.nginx.kTLS | Whether to enable kTLS support
|
| services.sabnzbd.allowConfigWrite | By default we create the sabnzbd configuration read-only,
which keeps the nixos configuration as the single source
of truth
|
| services.jirafeau.nginxConfig.http2 | Whether to enable the HTTP/2 protocol
|
| services.picom.vSync | Enable vertical synchronization
|
| services.ncps.cache.allowPutVerb | Whether to enable Whether to allow the PUT verb to push narinfo and nar files directly
to the cache.
.
|