I have encrypted zfs storage and I back this up encrypted to backblaze, when I start my system I provide an key to decrypt the pool. However the encryption key of the backup is just stored in plain text. So if someone where to steal my system they could obtain access to the pool data from just restoring from cloud they have the decryption key, to do so.
So I was wondering isn't there a way to backup raw zfs blocks which are encrypted by default to the cloud?
So I was wondering isn't there a way to backup raw zfs blocks which are encrypted by default to the cloud?