strange, cpu is definitely encrypted, and import uses cpu to start export on the remote machine so it should be encrypted too - unless I misunderstood.
the fs protocol used by srv is not encrypted, I'am guessing because machines need to use it to boot and adding booting over encrypted links was too much hassle. Perhaps there where performance reasons too? -Steve
