Is it possible to encrypt content of a container filesystem?
For example I want to use remote storage like cifs/nfs. If the remote system gets compromised (or if I don't trust admin...) - all container data might be read, copied and taken over by "bad people". On the other hand - if the data was encrypted (and the key was kept on the pve node), then there would be no possible way to read container content as long as the node itself stays secured. (Bad people could only delete the data, but not read them.)
For example I want to use remote storage like cifs/nfs. If the remote system gets compromised (or if I don't trust admin...) - all container data might be read, copied and taken over by "bad people". On the other hand - if the data was encrypted (and the key was kept on the pve node), then there would be no possible way to read container content as long as the node itself stays secured. (Bad people could only delete the data, but not read them.)