Yes, I know it's present in newer versions. Didn't know this is whishlist, sorry. I tought it was normal as MITM attacks are easier when no cert validation is done at all.
I asked because the SSLCiphers were backported (although that probably is an even simpler patch) to 1.4 and thought this is an important feature too, and hopefully not too invasive (the patch I linked is not a one line patch, but it doesn't change A LOT. Although I don't know if it applies fine). But if it won't be backported (whatever reason), I will probably not use the jessie znc package. Thanks a lot, Rodrigo
