I am setting up a server in an office, and we want to encrypt the hard drive so that in the event of a physical breach, the data is secure. We initially used FileVault2, but since we need to be able to remote into the server, no services start until the hard disk is first unlocked. This poses a problem for our workflow. Is there a way to start specific services using the FileVault method, or is there a way to encrypt a user/file system, all their files and services (such as mysqld[plus the DB data itself] and VPN), yet still allow specific services to start up, such as httpd or sshd upon powering on the server?
Admins are not always present in the office, and having the bare minimum access to the service through remote access is optimal, and so far, the other solutions I've found are all full disk encryption.