Ask HN: Two specific Postgres encrypt questions

A Hacker News user asks for recommendations on encrypting PostgreSQL data at rest without purchasing software, and whether the PEM passphrase must be retained after configuring TLS/SSL.

HN, A What are the recommended ways to encode Postrgres data at rest tables+indexes+rows ? The Postgres documentation suggests options 0 , but I have no familiarity with any. I prefer to not purchase something. B When configuring Postgres with TLS/SSL, one needs to make private keys 1 which can lead to a prompt for a PEM pass phrase. Once all done with Postgres running, do I need to retain the PEM passkey? The private key itself needs to be retained, of course . 0 https://www.postgresql.org/docs/18/encryption-options.html 1 openssl genrsa -aes256 -out Enter PEM pass phrase: ... Comments URL: https://news.ycombinator.com/item?id=48626895 https://news.ycombinator.com/item?id=48626895 Points: 1 Comments: 0