#START
#!/bin/sh
# Generate a new ssl certificate 'stunnel.pem' in the current directory

openssl req -new -nodes -out required.pem -keyout private.pem
openssl rsa -in private.pem -out new.private.pem
openssl x509 -in required.pem -out ca-cert -req -signkey new.private.pem -days 365
openssl gendh > diffie_hellman
cat ca-cert >> new.private.pem
cat diffie_hellman >> new.private.pem
cp new.private.pem stunnel.pem
#FINISH