>> How can you make that the default? Won't it immediately break every
>> installation without certificates?
>
> *all* SSL installations have certificate on the server side. You cannot
> run without it.
s/without certificates/with self-signed certificates/
which I would guess to be a common configuration
...Robert