Third patch - adds client verification of server certificate.
This has some POSIX-isms that need to be expanded for Windows
and Mac clients, and identifies (but does not fix) a problem
on the backend that could be used for "denial of service"
attacks on the current backend.
Bear
