Full disk encryption on the server. #103
Labels
👨 Complexity 4 - More
More complex.
🏗️ Infrastructure
Infrastructure related development work.
🤨 Priority 2 - Low
Priority is low.
🤫 Severity 1 - Mild
Severity Level 1. Lowest severity.
Projects
Currently during alpha/development on the staging server that runs Debian Linux, system/volume disk encryption is using DigitalOcean defaults. Should additional encryption be enabled?
System disk
This might be difficult if it requires a LUKS decryption password to be entered on every boot/reboot.
Employ fscrypt to securely protect, from data-at-rest exposure, all files+data installed after an initial Linux system build?
Database data volume
The servers are currently being hosted by DigitalOcean. The database data is stored on a separate mounted volume.
How to Create an Encrypted File System on a DigitalOcean Block Storage Volume
The text was updated successfully, but these errors were encountered: