Verify server certificates

[Ralith]

This is necessary to prevent trivial man-in-the-middle attacks on clients. However, care is necessary to ensure servers can be easily hosted on a LAN and from servers that lack a domain name. Ideally we'll likely want a combination of paradigms:

• Traditional PKI for servers with real domain names
• Trust-on-first-use for WAN IP addresses
• Something else for LAN IP addresses, since TOFU is likely to be too onerous on addresses that will be frequently reassigned. Maybe disable verification and display a fingerprint that can be manually verified if desired?