IMAPFilter through 2.6.12 does not validate the hostname in an SSL certificate.