...
The following is a sample stunnel.cnf for the openssl program:
...
# create
...
RSA
...
certs
...
- Server
RANDFILE = stunnel.rnd
[
...
req
...
]
default_bits
...
=
...
1024
encrypt_key
...
=
...
yes
distinguished_name
...
=
...
req_
...
dn
x509_extensions
...
=
...
cert_type
[
...
req_dn
...
]
countryName
...
=
...
Country
...
Name
...
(2
...
letter
...
code)
countryName_
...
default = PL
countryName_min = 2
countryName_max = 2
stateOrProvinceName = State or Province Name (full name)
stateOrProvinceName_default = Some-State
localityName = Locality Name (eg, city)
0.organizationName = Organization Name (eg, company)
0.organizationName_default = Stunnel Developers Ltd
organizationalUnitName = Organizational Unit Name (eg, section)
#organizationalUnitName_default =
0.commonName = Common Name (FQDN of your server)
0.commonName_default = localhost
# To create a certificate for more than one name uncomment:
# 1.commonName = DNS alias of your server
# 2.commonName = DNS alias of your server
# ... # See http://home.netscape.com/eng/security/ssl_2.0_certificate.
...
# to
...
see
...
how
...
Netscape
...
understands
...
commonName.
[
...
cert_type
...
]
nsCertType
...
=
...
server
...
7. Copy stunnel.pem to <stunnel install directory>/uptimeagent.pem
...
cert=/etc/stunnel/uptimeagent. |
|---|
...
pem exec=/opt/uptime-agent/bin/uptimeagent |
|---|
...