| services.eris-server.listenHttp | Server HTTP listen address
|
| services.i2pd.limits.openFiles | Maximum number of open files (0 - use system default).
|
| security.tpm2.fapi.profileName | Name of the default cryptographic profile chosen from the profile_dir directory.
|
| services.jitsi-meet.config | Client-side web application settings that override the defaults in config.js
|
| services.caddy.logDir | Directory for storing Caddy access logs.
If left as the default value this directory will automatically be created
before the Caddy server starts, otherwise the sysadmin is responsible for
ensuring the directory exists with appropriate ownership and permissions.
|
| services.umurmur.configFile | Configuration file, default is generated from config.service.umurmur.settings
|
| services.mysql.group | Group account under which MySQL runs.
If left as the default value this group will automatically be created
on system activation, otherwise you are responsible for
ensuring the user exists before the MySQL service starts.
|
| services.fail2ban.bantime-increment.enable | "bantime.increment" allows to use database for searching of previously banned ip's to increase
a default ban time using special formula, default it is banTime * 1, 2, 4, 8, 16, 32 ...
|
| services.fail2ban.bantime-increment.factor | "bantime.factor" is a coefficient to calculate exponent growing of the formula or common multiplier,
default value of factor is 1 and with default value of formula, the ban time grows by 1, 2, 4, 8, 16 ...
|
| services.anubis.defaultOptions.settings.BIND_NETWORK | The network family that Anubis should bind to
|
| services.athens.goGetDir | Temporary directory that Athens will use to
fetch modules from VCS prior to persisting
them to a storage backend
|
| services.davis.nginx.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| programs.alvr.openFirewall | Whether to open the default ports in the firewall for the ALVR server.
|
| services.jenkinsSlave.home | The path to use as JENKINS_HOME
|
| services.inadyn.user | User account under which inadyn runs.
If left as the default value this user will automatically be created
on system activation, otherwise you are responsible for
ensuring the user exists before the inadyn service starts.
|
| services.slskd.nginx.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| services.nfs.server.hostName | Hostname or address on which NFS requests will be accepted
|
| services.sonarr.user | User account under which Sonarr runs.";
If left as the default value this user will automatically be created
on system activation, otherwise you are responsible for
ensuring the user exists before the Sonarr service starts.
|
| services.movim.nginx.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| services.snmpd.configFile | Path to the snmpd.conf file
|
| services.temporal.group | The group temporal runs as
|
| services.quickwit.group | The group quickwit runs as
|
| services.maddy.group | Group account under which maddy runs.
If left as the default value this group will automatically be created
on system activation, otherwise the sysadmin is responsible for
ensuring the group exists before the maddy service starts.
|
| boot.loader.generationsDir.enable | Whether to create symlinks to the system generations under
/boot
|
| programs.bash.enable | Whenever to configure Bash as an interactive shell
|
| services.freshrss.pool | Name of the php-fpm pool to use and setup
|
| services.kapacitor.bind | Address to bind to
|
| services.i2pd.inTunnels.<name>.inPort | Service port
|
| services.dovecot2.mailGroup | Default group to store mail for virtual users.
|
| services.bird-lg.proxy.allowedIPs | List of IPs or networks to allow (default all allowed).
|
| services.mysql.dataDir | The data directory for MySQL.
If left as the default value of /var/lib/mysql this directory will automatically be created before the MySQL
server starts, otherwise you are responsible for ensuring the directory exists with appropriate ownership and permissions.
|
| services.neo4j.workerCount | Number of Neo4j worker threads, where the default of
0 indicates a worker count equal to the number of
available processors.
|
| services.snipe-it.nginx.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| services.munin-node.enable | Enable Munin Node agent
|
| services.ntopng.configText | Overridable configuration file contents to use for ntopng
|
| services.patroni.group | The group for the service
|
| services.zeyple.group | Group to use to run Zeyple.
If left as the default value this group will automatically be created
on system activation, otherwise the sysadmin is responsible for
ensuring the user exists.
|
| services.neo4j.ssl.policies.<name>.trustedDir | Path to directory of X.509 certificates in PEM format for
trusted parties
|
| services.agorakit.nginx.locations.<name>.fastcgiParams | FastCGI parameters to override
|
| services.librenms.nginx.locations.<name>.fastcgiParams | FastCGI parameters to override
|
| services.kanboard.nginx.locations.<name>.fastcgiParams | FastCGI parameters to override
|
| services.dolibarr.nginx.locations.<name>.fastcgiParams | FastCGI parameters to override
|
| services.fediwall.nginx.locations.<name>.fastcgiParams | FastCGI parameters to override
|
| services.fail2ban.bantime-increment.formula | "bantime.formula" used by default to calculate next value of ban time, default value below,
the same ban time growing will be reached by multipliers 1, 2, 4, 8, 16, 32 ...
|
| services.limesurvey.nginx.virtualHost.rejectSSL | Whether to listen for and reject all HTTPS connections to this vhost
|
| services.mainsail.nginx.locations.<name>.fastcgiParams | FastCGI parameters to override
|
| services.pixelfed.nginx.locations.<name>.fastcgiParams | FastCGI parameters to override
|
| services.anubis.instances.<name>.policy.useDefaultBotRules | Whether to include Anubis's default bot detection rules via the
(data)/meta/default-config.yaml import
|
| services.caddy.configFile | Override the configuration file used by Caddy
|
| services.hadoop.yarnSiteDefault | Default options for yarn-site.xml
|
| services.coturn.secure-stun | Require authentication of the STUN Binding request
|
| security.acme.defaults.group | Group running the ACME client.
|
| boot.initrd.luks.cryptoModules | A list of cryptographic kernel modules needed to decrypt the root device(s)
|
| services.anuko-time-tracker.dataDir | Default data folder for Anuko Time Tracker.
|
| services.jenkinsSlave.group | If the default slave agent user "jenkins" is configured then this is
the primary group of that user.
|
| programs.gamescope.env | Default environment variables available to the GameScope process, overridable at runtime.
|
| programs.command-not-found.dbPath | Absolute path to programs.sqlite
|
| services.hadoop.hdfsSiteDefault | Default options for hdfs-site.xml
|
| services.tsidp.settings.port | Port to listen on (default: 443).
|
| services.logkeys.device | Use the given device as keyboard input event device instead of /dev/input/eventX default.
|
| services.mongodb.enableAuth | Enable client authentication
|
| services.samba-wsdd.hostname | Override (NetBIOS) hostname to be used (default hostname).
|
| services.samba-wsdd.hoplimit | Hop limit for multicast packets (default = 1).
|
| services.nats.dataDir | The NATS data directory
|
| services.system76-scheduler.settings.cfsProfiles.default.wakeup-granularity | sched_wakeup_granularity_ns.
|
| services.adguardhome.settings | AdGuard Home configuration
|
| systemd.watchdog.device | The path to a hardware watchdog device which will be managed by systemd
|
| services.ax25.axports.<name>.window | Default window size for this interface.
|
| services.dolibarr.h2o.host | Set the host address for this virtual host
|
| services.dolibarr.h2o.tls.port | Override the default TLS port for this virtual host.
|
| services.inadyn.group | Group account under which inadyn runs.
If left as the default value this user will automatically be created
on system activation, otherwise you are responsible for
ensuring the user exists before the inadyn service starts.
|
| services.bitcoind.<name>.dbCache | Override the default database cache size in MiB.
|
| services.sonarr.group | Group account under which Sonarr runs.
If left as the default value this group will automatically be created
on system activation, otherwise you are responsible for
ensuring the group exists before the Sonarr service starts.
|
| services.maddy.config | Server configuration, see
https://maddy.email for
more information
|
| services.samba.openFirewall | Whether to enable opening the default ports in the firewall for Samba.
|
| services.tsmBackup.autoTime | The backup service will be invoked
automatically at the given date/time,
which must be in the format described in
systemd.time(5)
|
| services.resilio.uploadLimit | Upload speed limit. 0 is unlimited (default).
|
| services.wivrn.openFirewall | Whether to enable the default ports in the firewall for the WiVRn server.
|
| services.radicle.httpd.nginx.locations.<name>.fastcgiParams | FastCGI parameters to override
|
| virtualisation.xen.domains.extraConfig | Options defined here will override the defaults for xendomains
|
| services.anuko-time-tracker.nginx.locations.<name>.fastcgiParams | FastCGI parameters to override
|
| services.nginx.virtualHosts.<name>.locations.<name>.fastcgiParams | FastCGI parameters to override
|
| services.suricata.settings.logging.default-output-filter | A regex to filter output
|
| programs.miriway.config | Miriway's config
|
| boot.loader.grub.extraEntriesBeforeNixOS | Whether extraEntries are included before the default option.
|
| services.https-dns-proxy.preferIPv4 | https_dns_proxy will by default use IPv6 and fail if it is not available
|
| services.ax25.axports.<name>.paclen | Default maximum packet size for this interface.
|
| services.fluidd.nginx.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| services.akkoma.nginx.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| nix.settings.max-jobs | This option defines the maximum number of jobs that Nix will try to
build in parallel
|
| services.httpd.mpm | Multi-processing module to be used by Apache
|
| services.bitcoind.<name>.rpc.port | Override the default port on which to listen for JSON-RPC connections.
|
| programs.dconf.profiles | Attrset of dconf profiles
|
| services.gancio.nginx.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| services.neo4j.http.enable | Enable the HTTP connector for Neo4j
|
| services.traefik.user | User under which Traefik runs.
If left as the default value this user will automatically be created
on system activation, otherwise you are responsible for
ensuring the user exists before the Traefik service starts.
|
| services.node-red.userDir | The directory to store all user data, such as flow and credential files and all library data
|
| services.sonarr.dataDir | The Sonarr home directory used to store all data
|
| services.sympa.database.port | Database port
|
| services.matomo.nginx.addSSL | Whether to enable HTTPS in addition to plain HTTP
|