Extra precaution with Proxmox ZFS Unlock

[TommyTran732]

The Proxmox with native ZFS guide doesn't have any tamper protection anyways, so it is not the end of the world without these. However, it will be good practice to

• Not setup LetsEncrypt until the ZFS root dataset is already encrypted
• Rotate the server SSH keys after the dataset is encrypted
• Change the root password (just generally good practice to not expose the hash of the root practice I suppose)

[TommyTran732]

Aside of the SSH host key, Proxmox has another key where it uses to access other nodes in the cluster, and this needs to be rotated as well. This one is probably more important than the rest.