Questions:
1) I have a non self signed digital cert - how do I use it - I don't want to create a self signed
2) If someone tries to break in, can I ban their IP and how? Standard HTTP HFS can't - it only sees the local 127.0.0.1 IP from STUNNEL
3) Can I run this version like I do HFS as a Windows Service using SRVANY?
1) Once you have created a new SSL configuration with HFS, you edit stunnel.conf as follows :
cert = .\SslCerts\your-certificate-name.pem
key = .\SslCerts\your-private-key-name.pem
The certificate must be in extension ".pem" ( x509 certificate ) .
If your certificate is included in a single file, you enter the same file name in the two entries :
cert = .\SslCerts\your-certificate-name.pem
key = .\SslCerts\your-certificate-name.pem
Then you put your certificate file in the SslCerts folder.
You get the same result by creating entirely your configuration with HFS by giving the same name to the certificate created that your certificate.... then you replace the file created by your file(s) in the SslCerts folder.
3) Yes, you can!