Whether to set up a loopback device that continuously records and allows to play back audio from the computer

emits keter logs and it's applications to stderr. which allows journald to capture them

Extra config files to include

Make netboot.xyz available from the systemd-boot menu. netboot.xyz is a menu system that allows you to boot OS installers and utilities over the network.

Whether the service should be reloaded during a NixOS configuration switch if its definition has changed

This option allows you to override the Linux kernel used by NixOS

If set, the service will register a new session with systemd's login manager

Allows you to send metrics to a location different than the default /api/send.

Static prefix for all HTML links and redirect URLs in the UI query web interface

Allows configuring environment variable credentials for renovate, read from files

Package set to use for the host-specific packages of the VM runner

Static prefix for all HTML links and redirect URLs in the UI query web interface

Enable/disable the embedded DNS proxy server

Origins allowed to connect to the collaboration server

Environment variables suffixed by "_FILE" to set for the cert's service for your selected dnsProvider

Whether to enable the Jenkins Job Builder (JJB) service

File to load as the environment file

Sets allowed passwords for WPA3-SAE

Environment variables for the Firezone server

Allows administration via an XMPP client that supports ad-hoc commands

When a room is destroyed, it leaves behind a tombstone which prevents the room being entered or recreated

Whether to fall back to WPA2 authentication protocols if WPA3 failed

You want that ip-from-header in the nginx setup case

Defines whether users see the Register option in the menu of Time Tracker that allows them to self-register and create new organizations (top groups).

Allows Octoprint to control Klipper.

Use a boot loader to boot the system

The hostname that clients should use to connect to this server

The cache allows tarsnap to identify previously stored data blocks, reducing archival time and bandwidth usage

Your role in Tor network

It is recommended you keep your secrets separate from the configuration

Environment variables suffixed by "_FILE" to set for the cert's service for your selected dnsProvider

Whether to enable the dummy "startx" pseudo-display manager, which allows users to start X manually via the startx command from a virtual terminal.

Path to collection.cgi script from (collectd sources)/contrib/collection.cgi This option allows to use a customized version

List of additional allowed URLs to pass by the CSRF check

Maximum number of client connections allowed

Whether to generate the manual page index caches

CPU family of motherboard

Known homeservers

Name of HTTP request header used for dynamic prefixing of UI links and redirects

Whether to enable (experimental) dumpless upgrade

"bantime.increment" allows to use database for searching of previously banned ip's to increase a default ban time using special formula, default it is banTime * 1, 2, 4, 8, 16, 32 ...

Whether to enable the Xen Project Hypervisor, a virtualisation technology defined as a type-1 hypervisor, which allows multiple virtual machines, known as domains, to run concurrently on the physical machine

Name of HTTP request header used for dynamic prefixing of UI links and redirects

A proposal is a set of algorithms

This option allows you to define APs for one or multiple physical radios

This is a convenience option which allows you to set secret values for environment variables by specifying a file which will contain the value at runtime

Whether to enable presence tracking

When using the SLiRP user networking (default), this option allows to forward ports to/from the host/guest.

TURN REST API flag

User name under which the chrony exporter shall be run

Alloy configuration file/directory path

Allows libvirtd to use swtpm to create an emulated TPM.

Allows libvirtd to take advantage of OVMF when creating new QEMU VMs with UEFI boot.

Sets the pointer acceleration profile to the given profile

Group under which the chrony exporter shall be run

If provided, adds a prefix to indexes in Elasticsearch

Whether to enable the "sx" pseudo-display manager, which allows users to start manually via the "sx" command from a vt shell

Enable legacy crypto on this client

Whether to install the register_new_matrix_user script, that allows account creation on the terminal.

VRRP will normally preempt a lower priority machine when a higher priority machine comes online. "nopreempt" allows the lower priority machine to maintain the master role, even when a higher priority machine comes back online

List of allowed headers to be set by the user

Sets the pointer acceleration profile to the given profile

Whether the member list should be overwritten each time (true) or appended (false)

Whether to wrap the interpreter in a shell script

AH proposals to offer for the CHILD_SA

Make the Podman and Docker compatibility API available over the network with TLS client certificate authentication

Rendering mode of grafana-image-renderer:

• default: Creates on browser-instance per rendering request.
• reusable: One browser instance will be started and reused for each rendering request.
• clustered: allows to precisely configure how many browser-instances are supposed to be used

Whether to overwrite Jellyfin's encoding.xml configuration file on each service start

Additional arguments passed to each module in addition to ones like lib, config, and pkgs, modulesPath

Send notifications about killed processes via the system d-bus

Data Plane Development Kit is a framework for fast packet processing in data plane applications running on a wide variety of CPU architectures

Specifies the number of seconds between status packets sent back to the server

The configuration of vaultwarden is done through environment variables, therefore it is recommended to use upper snake case (e.g. DISABLE_2FA_REMEMBER)

Specifies if mapped OpenID Connect accounts are automatically created upon successful authentication

Whenever to send systembus-notify notifications

ESP proposals to offer for the CHILD_SA

Define a whitelist of allowed IP addresses or domains, with ports, to be used in data source URLs with the Grafana data source proxy

Periodically refresh the endpoint hostname or address for all peers

Enables MOBIKE on IKEv2 connections

Enables Aggressive Mode instead of Main Mode with Identity Protection

Specifies if mapped OpenID Connect accounts are automatically created upon successful authentication

List of IP address CIDR ranges that the URL preview spider is allowed to access even if they are specified in url_preview_ip_range_blacklist.

XFRM interface ID set on inbound policies/SA

Set of characters used as the delimiters for address extensions

Defines the base URI for the Hash and URL feature supported by IKEv2

XFRM interface ID set on outbound policies/SA

Netfilter mark and mask for output traffic

Netfilter mark and mask for input traffic

Sets the password(s) for WPA-PSK

Enable per-CPU CHILD_SAs

Netfilter mark applied to packets after the outbound IPsec SA processed them

Set to true to add the Content-Security-Policy header to your requests

Email will be sent by default with an HTML and a plain text body

List of local traffic selectors to include in CHILD_SA

If set, allows registration by anyone who also has the shared secret, even if registration is otherwise disabled