A flaw was found in Ceph. An attacker can allow Ceph to accept anycertificate because no certificate context is passed via Pybind to theconstructors imaplib.IMAP4_SSL or smtplib.SMTP_SSL. As a result, pybind pybinddoes not check the server's X.509certificate, instead accepting any certificate. This enables an attacker tocommit a Man In the Middle (MITM) attack, compromising mail servercredentials or mail contents