With the new addition of privacy-focused apps like Vaultwarden and Nextcloud, without full disc encryption anyone able to physically access the SSD attached to the Umbrel setup would have access to those app’s sensitive files.
- Is all SSD data encrypted at rest? The installation process doesn’t seem to imply that is the case.
- Is this handled separately by each app? If so how?
This seems incredibly important.