I am looking for a way to encrypt my drives so they can only be mounted if I manually type in a password. The encryption methods supported by FreeNAS only work if the drive is removed from the server, but not if the server is stolen with the drives since it automatically decrypts the drives. If I am not mistaken, this means if the server gets stolen, the encryption key is on an unencrypted disk (where the OS is installed) which means that my encrypted data is readable to the criminals by simply getting the key file from the OS disk then importing the encrypted drives with that key to another FreeNAS server.
I have some sensitive data about my clients and I must make sure that even if my server gets stolen, the data will not be readable to third parties.
Is there a solution to make this work or FreeNAS is not suitable for this task?
I have some sensitive data about my clients and I must make sure that even if my server gets stolen, the data will not be readable to third parties.
Is there a solution to make this work or FreeNAS is not suitable for this task?