+* Don't silently fall back to unencrypted client/core communication if certificate cannot be loaded
+* Properly escape LDAP usernames to prevent injection or bypassing authentication
+* Strip format codes in ignore list rules (this might affect pre-existing rules)