Thx, I have installed the dev version and tried to setup an account. I wondered, that still no certficate error is displayed in auto config mode.
Having a look into manual config mode shows that SSL strict is not used per default. Strict should be activated per default, otherwise the problem is still there: the user will not be informed about the wrong certificate, when using the default auto config mode...