[BodyCulture]

I wanted to use ZFS badly, but of course all data must be encrypted. It was surprising to see how usage gets much more complicated than expected and so many people just don’t encrypt their data because things get wild then.

Look, even Proxmox, which I totally expected to support encryption with default installation (it has „Enterprise“ on the website) does loose important features when trying to use with encryption.

Also please study the issue tracker, there are a few surprising things I would not have expected to exist in a productive file system.

[eadmund]

The best way to encrypt ZFS is to run unecrypted ZFS atop encrypted volumes (e.g. LUKS volumes). ZFS ‘encryption’ leaves too much in plaintext for my comfort.

[BodyCulture]

In the Proxmox forum some people tried this method and do not report big success. Can not recommend for production.

Still the same picture, encryption seems to be not a first class citizen in ZFS land.