Use makecert for xmpp

beaglebone.txt

@@ -3958,15 +3958,9 @@ To set UK time within Irssi:
 Generate a SSL certificate.
 
 #+BEGIN_SRC: bash
-openssl genrsa -out /etc/ssl/private/xmpp.key 4096
-openssl req -new -x509 -sha256 -key /etc/ssl/private/xmpp.key -out /etc/ssl/certs/xmpp.crt -days 3650
-#+END_SRC
-
-Change permissions.
-
-#+BEGIN_SRC: bash
-chmod 600 /etc/ssl/private/xmpp.key
-chmod 600 /etc/ssl/certs/xmpp.crt
+makecert xmpp
+chown prosody:prosody /etc/ssl/private/xmpp.key
+chown prosody:prosody /etc/ssl/certs/xmpp.*
 #+END_SRC
 
 Install Prosody.
@@ -3984,10 +3978,11 @@ Change the *VirtualHost* name to your domain name and remove the line below it.
 Set the ssl section to:
 
 #+BEGIN_SRC: bash
-	ssl = {
-		key = "/etc/ssl/private/xmpp.key";
-		certificate = "/etc/ssl/certs/xmpp.crt";
-		}
+    ssl = {
+        key = "/etc/ssl/private/xmpp.key";
+        certificate = "/etc/ssl/certs/xmpp.crt";
+        dhparam = "/etc/ssl/certs/xmpp.dhparam";
+    }
 #+END_SRC
 
 And also append the following:
@@ -7736,12 +7731,9 @@ Run *makecert <domain>* for each of your sites.
 Recreate the XMPP certificate:
 
 #+BEGIN_SRC: bash
-openssl genrsa -out /etc/ssl/private/xmpp.key 4096
-openssl req -new -sha256 -x509 -key /etc/ssl/private/xmpp.key -out /etc/ssl/certs/xmpp.crt -days 3650
-chmod 600 /etc/ssl/private/xmpp.key
-chmod 600 /etc/ssl/certs/xmpp.crt
+makecert xmpp
 chown prosody:prosody /etc/ssl/private/xmpp.key
-chown prosody:prosody /etc/ssl/certs/xmpp.crt
+chown prosody:prosody /etc/ssl/certs/xmpp.*
 #+END_SRC
 
 And regenerate the IRC server keys: