R
Rob Fitzpatrick
Guest
I don't even see the point of enabling encryption with -i. The common scenario for using -i is the binary load portion of a dump/load/rebuild. People use -i because (a) it speeds up the process substantially, which means minimizing downtime substantially, and (b) you're starting from nothing, so if you crash and lose the database you can safely start over. Enabling encryption and encrypting your objects doesn't have to be done all at once and doesn't have to be done offline. Users can use the system while data is being encrypted. Whereas you would have to keep users out of the system during initial encryption with -i because you can't guarantee the durability of their transactions. That doesn't seem like it's worth the bother and the risk.
Continue reading...
Continue reading...