Here is where several of the Proxomitron's global settings can be changed. Click a tab and area for an explanation of its function.
The "HTTPS" Tab
Here is where all the HTTPS-filtering configuration lies, the most important part of making Proxomitron Reborn work in this age of widely encountered HTTPS-only sites.
The HTTPS port is not really part of HTTPS filtering, but is included on this tab for completeness. Proxomitron Reborn can listen on a port like an HTTPS webserver, and serve files from it, as well as do its usual proxying through this port. Not all browsers support the latter, but the former is useful for replacing resources on HTTPS pages without causing the browser to warn about "mixed content".
Proxomitron acts like a browser (client) making a secure connection to a server when performing HTTPS filtering. The cipher configuration tells Proxomitron how to configure OpenSSL by giving it a list of algorithms (ciphersuites) to use. By adjusting this field, you can make Proxomitron appear more like a regular browser, since some sites may do "fingerprinting" techniques to try to block "unapproved" visitors. Its syntax is controlled by OpenSSL - see openssl-ciphers for all the details.
Here you also have the option of bypassing certificate checks for sites that may not have correctly configured certificates; put a matching pattern here, and any site whose hostname matches will be excluded from certificate checking. If this field is left blank, all sites will be subjected to certificate matching. Note that this can reduce security, and most if not all sites now have valid certificates, so this is seldom needed.
Click the "Certificate Generation and Installation" button to open the Certificate Generator. If Proxomitron currently has a certificate loaded, it will warn you that it'll be overwritten and lost forever if you try to generate one, but you can still play with the generator - as long as you don't press the Generate button there, it won't touch an existing certificate.
