Use makecert for xmpp

beaglebone.txt

 Generate a SSL certificate.
 
 #+BEGIN_SRC: bash
-openssl genrsa -out /etc/ssl/private/xmpp.key 4096
-openssl req -new -x509 -sha256 -key /etc/ssl/private/xmpp.key -out /etc/ssl/certs/xmpp.crt -days 3650
-#+END_SRC
-
-Change permissions.
-
-#+BEGIN_SRC: bash
-chmod 600 /etc/ssl/private/xmpp.key
-chmod 600 /etc/ssl/certs/xmpp.crt
+makecert xmpp
+chown prosody:prosody /etc/ssl/private/xmpp.key
+chown prosody:prosody /etc/ssl/certs/xmpp.*
 #+END_SRC
 
 Install Prosody.
 Set the ssl section to:
 
 #+BEGIN_SRC: bash
-	ssl = {
-		key = "/etc/ssl/private/xmpp.key";
-		certificate = "/etc/ssl/certs/xmpp.crt";
-		}
+    ssl = {
+        key = "/etc/ssl/private/xmpp.key";
+        certificate = "/etc/ssl/certs/xmpp.crt";
+        dhparam = "/etc/ssl/certs/xmpp.dhparam";
+    }
 #+END_SRC
 
 And also append the following:
 Recreate the XMPP certificate:
 
 #+BEGIN_SRC: bash
-openssl genrsa -out /etc/ssl/private/xmpp.key 4096
-openssl req -new -sha256 -x509 -key /etc/ssl/private/xmpp.key -out /etc/ssl/certs/xmpp.crt -days 3650
-chmod 600 /etc/ssl/private/xmpp.key
-chmod 600 /etc/ssl/certs/xmpp.crt
+makecert xmpp
 chown prosody:prosody /etc/ssl/private/xmpp.key
-chown prosody:prosody /etc/ssl/certs/xmpp.crt
+chown prosody:prosody /etc/ssl/certs/xmpp.*
 #+END_SRC
 
 And regenerate the IRC server keys: