Searxng Environment Variables

Generated with sparks and insights from 5 sources

Introduction

SearXNG is a versatile metasearch engine that can be customized using various environment variables.
Key environment variables include SEARXNG_SETTINGS_PATH, which specifies the path for the configuration file, and UWSGI_WORKERS and UWSGI_THREADS, which configure the number of UWSGI processes and threads.
SEARXNG_BASE_URL is another important environment variable that defines the base URL for the SearXNG instance.
Environment variables can be set directly in Docker-compose.yaml, or through a separate environment variable file.
SearXNG also supports customization via secrets and security keys, which are essential for secure operations, especially when using Docker containers.
Environment variables are particularly important when setting up SearXNG in Docker, as they enable customization of ports, binding addresses, and more sensitive settings like domain authentication.
Understanding and correctly setting these environment variables is crucial for optimizing the performance and security of a SearXNG instance.

SEARXNG_SETTINGS_PATH: Defines the path to the SearXNG configuration file.
UWSGI_WORKERS and UWSGI_THREADS: Control the number of workers and threads for the UWSGI server, crucial for performance tuning.
SEARXNG_BASE_URL: Specifies the base URL for the SearXNG instance, essential for API and user accessibility.
BIND_ADDRESS: Customizes the bind address of SearXNG, defaults to 0.0.0.0:8080.
DOMAIN: Helps define the domain used for serving the instance, important for TLS and domain authentication.
IMAGE_PROXY: Activatable by default to enhance privacy through image proxy features.

docker-compose.yaml: Set environment variables directly in this file for easy management.
Separate Environment File: Specify a separate environment file for cleaner configurations and better security practices.
Run-time Setup: Adjust variables during Docker compose run for temporary changes.
Use of secrets: Enhance security by configuring sensitive details through secrets.
chaining methods: Combine different methods depending on the complexity and security needs of the setup.

Installation: Clone the SearXNG Docker repository and navigate to the folder.
Configuration: Modify the .env file for basic settings such as hostname and email.
Secret Key: Generate a unique secret key for better security.
Reverse Proxy: Include Caddy for automatic TLS certificate management.
Separate proxy: Option to use existing reverse proxies for more advanced configurations.
Logging: Use Docker compose logs for troubleshooting across containers.

Cap_drop configuration: Remove kernel capabilities for better security after initial setup.
Secrets Management: Use Docker secrets to manage sensitive data securely.
TLS Certificates: Configure either via automatic means like Caddy or manually for custom reverse proxies.
Environment variables: Securely store environment configurations, especially for production environments.
Regularly update Docker images: Keep Docker containers up to date to mitigate vulnerabilities.

Logs: Use docker compose logs -f for real-time log access to troubleshoot issues.
Container-specific logs: Access logs of individual containers such as SearXNG, Caddy, and Valkey.
Network issues: Verify BIND_ADDRESS and port configurations if facing connectivity problems.
Environment variable verification: Double-check that all environment variables are correctly set as intended.
Common issues: Ensure docker-compose configurations reflect any changes in external dependencies.

Reverse Proxy Configuration: Customize using advanced proxies like Nginx or HAProxy.
Port Adjustments: Modify ports through BIND_ADDRESS to suit network configurations.
Custom TLS Setup: Implement custom TLS configurations for unique security requirements.
Image Proxy Adjustments: Modify the Caddyfile for image proxy settings to balance bandwidth and privacy.
Hostname and Domain Tweaks: Adjust environment variables for domain-specific settings such as SEO optimizations.