a776bd
To generate a key and self signed certificate, execute the following commands:
a776bd
a776bd
cd /etc/pki/tls/certs
a776bd
make stunnel.pem
a776bd
a776bd
Note that by default, the file containing the key and certificate has its
a776bd
permissions set to 0600, which means that any service using it needs to be
a776bd
started as root in order to read it.  Such a service should be configured
a776bd
to switch UIDs using stunnel's "-s" flag.