Comment on Notes on full disk encryption on a Hetzner cloud VPS
exu@feditown.com 12 hours agoIt’s worth going through the provider’s policies.
For example, here’s how Hetzner handles deletion of your data
Encryption will prevent mistakes, but if you can’t trust the provider’s policies you shouldn’t trust them to run your infrastructure at all.
aksdb@lemmy.world 12 hours ago
Security is always applied in layers. The more the better. There’s a reason “encryption at rest” is a requirement in many audits.
exu@feditown.com 10 hours ago
Agreed. I was going to argue more against encryption, but you can see me somewhat changing my mind in the second half of my comment.
For me personally, I don’t want the hassle of encryption on my VPS and have decided I’m fine with the remaining risk.