From 8ad3ff6d293f740e7759b5ea1849cb24e7077bf1 Mon Sep 17 00:00:00 2001
From: Alejandro Revilla <apr@jpos.org>
Date: Tue, 26 Jul 2022 13:20:28 -0300
Subject: [PATCH] Passwords can be de-referenced from the environment

And eventually picked off an HSM. So this implementation is
safe enough for production.
---
 doc/src/asciidoc/ch05/ssl_channels.adoc | 6 ------
 1 file changed, 6 deletions(-)

diff --git a/doc/src/asciidoc/ch05/ssl_channels.adoc b/doc/src/asciidoc/ch05/ssl_channels.adoc
index c0051d6300..3109cd09b2 100644
--- a/doc/src/asciidoc/ch05/ssl_channels.adoc
+++ b/doc/src/asciidoc/ch05/ssl_channels.adoc
@@ -65,12 +65,6 @@ child element.
 
 [NOTE]
 ====
-While `GenericSSLSocketFactory` can be used to demonstrate SSL support
-in jPOS, production-grade installations should consider it just
-a reference/sample implementation. It uses `${user.home}/.keystore`
-with a default password, so *at the very least* you
-want to override its +getPassword()+ method.
-
 For backward compatibility, we also have a `SunJSSESocketFactory` implementation
 that uses `com.sun.net.ssl.internal.ssl.Provider`.
 ====