This message was deleted.

This appears to be on the roadmap for 1.4 and 1.5: https://github.com/harvester/harvester/wiki/Roadmap

You mean this? That is about the longhorn volumes.

Good point. I missed the diferentiator between the Harvester root volume (which I believe is what you are looking for) and the Harvester-deployed VMs' root volumes (which would be Longhorn or future 3rd-party storage systems). I am unsure if the CIS security benchmark targeted for v1.5 would cover root volume encryption or not...

I would think so. But there isn't a mention of it at all besides that issue that is long forgotten

...and, pitching in my public sector (higher ed) perspective: Controlled Unclassified Information (CUI) is rapidly becoming a big deal. For cloud-averse institutions, investing in on-premise CUI enclaves where we can demonstrate CIS benchmark achievements and show how we are protecting regulated data (encryption at rest being just one aspect) is paramount for meeting audits.

I saw this by chance and thought I'd follow up, we haven't forgotten, that's technically a duplicate of https://github.com/harvester/harvester/issues/3129 as mentioned. I'm asking to get that clarified in GitHub for anyone else looking 🙂