diff --git a/ChangeLog.txt b/ChangeLog.txt
index f9f24f70..a9c9dd9f 100644
--- a/ChangeLog.txt
+++ b/ChangeLog.txt
@@ -1,3 +1,9 @@
+1.3.2 - 2014xxxx
+================
+
+Broker:
+- Ensure that bridges verify certificates by default when using TLS.
+
 1.3.1 - 20140324
 ================
 
diff --git a/src/bridge.c b/src/bridge.c
index 4a8c5843..43e70b09 100644
--- a/src/bridge.c
+++ b/src/bridge.c
@@ -122,6 +122,7 @@ int mqtt3_bridge_new(struct mosquitto_db *db, struct _mqtt3_bridge *bridge)
 	new_context->tls_capath = new_context->bridge->tls_capath;
 	new_context->tls_certfile = new_context->bridge->tls_certfile;
 	new_context->tls_keyfile = new_context->bridge->tls_keyfile;
+	new_context->tls_cert_reqs = SSL_VERIFY_PEER;
 	new_context->tls_version = new_context->bridge->tls_version;
 	new_context->tls_insecure = new_context->bridge->tls_insecure;
 #ifdef REAL_WITH_TLS_PSK