SSL

SSL

Vimprobable will attempt to verify SSL certificates presented by websites against a given CA bundle file. By default, this is

/etc/ssl/certs/ca-certificates.crt

This file can be configured in config.h or (in Vimprobable2) through

:set cabundle=/path/to/file

By default, Vimprobable will refuse to connect to websites whose certificate cannot be verified. To override this, disable the "strict SSL" setting, either in config.h or (Vimprobable2) at run time:

:set strictssl=false

Please be aware that although invalid certificates will still be indicated in the URL bar (red background colour), this will make Vimprobable accept any encrypted connection with unverified communication partners. This will make you vulnerable to man-in-the-middle and other identify spoofing attacks!