free
/
freedombone
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Use makecert for xmpp

This commit is contained in:
Bob Mottram 2014-09-14 15:58:57 +01:00
parent fe349853c4
commit a4b48f92c4
1 changed files with 10 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
beaglebone.txt
View File

@ -3958,15 +3958,9 @@ To set UK time within Irssi:
Generate a SSL certificate.
#+BEGIN_SRC: bash
openssl genrsa -out /etc/ssl/private/xmpp.key 4096
openssl req -new -x509 -sha256 -key /etc/ssl/private/xmpp.key -out /etc/ssl/certs/xmpp.crt -days 3650
#+END_SRC
Change permissions.
#+BEGIN_SRC: bash
chmod 600 /etc/ssl/private/xmpp.key
chmod 600 /etc/ssl/certs/xmpp.crt
makecert xmpp
chown prosody:prosody /etc/ssl/private/xmpp.key
chown prosody:prosody /etc/ssl/certs/xmpp.*
#+END_SRC
Install Prosody.
@ -3984,10 +3978,11 @@ Change the *VirtualHost* name to your domain name and remove the line below it.
Set the ssl section to:
#+BEGIN_SRC: bash
ssl = {
key = "/etc/ssl/private/xmpp.key";
certificate = "/etc/ssl/certs/xmpp.crt";
}
ssl = {
key = "/etc/ssl/private/xmpp.key";
certificate = "/etc/ssl/certs/xmpp.crt";
dhparam = "/etc/ssl/certs/xmpp.dhparam";
}
#+END_SRC
And also append the following:
@ -7736,12 +7731,9 @@ Run *makecert <domain>* for each of your sites.
Recreate the XMPP certificate:
#+BEGIN_SRC: bash
openssl genrsa -out /etc/ssl/private/xmpp.key 4096
openssl req -new -sha256 -x509 -key /etc/ssl/private/xmpp.key -out /etc/ssl/certs/xmpp.crt -days 3650
chmod 600 /etc/ssl/private/xmpp.key
chmod 600 /etc/ssl/certs/xmpp.crt
makecert xmpp
chown prosody:prosody /etc/ssl/private/xmpp.key
chown prosody:prosody /etc/ssl/certs/xmpp.crt
chown prosody:prosody /etc/ssl/certs/xmpp.*
#+END_SRC
And regenerate the IRC server keys: