ssl_verify_peer_certificate should not be on by default

The fix to ssl_verify_peer_certificate not requiring clients to present a certificate changed the default behavior. The old behavior was very similar to ssl_verify_peer_certificate=false so the default should be changed to match that. The fact that presented certificates are no longer verified is not a concern if certificates weren't required in the first place.