I suppose the right solution would involve client-side line by line encryption, although that would limit search capability?