Given a lot of people use cleartext auth method to connect to DBs hosted by Azure and CockroachLabs.

I think it's time to implement sslmode=verify-full to protect these use cases.