I have using LUKS. Some times I am in the Qubes doing things like update and want to leave my system running
I am concerned about computer being taken and kept on and active and then files acessed.
I want to install Veracrypt in dom0 and encrypt “PrayingWithFriend” qube
Will there be a problem in moving a Veracrypt deb for Debian 9 into dom0 and installing to do this?
I want to encrypt directory with the PrayingWithFriend data and then decrypt data in dom0. One problem is Veracrypt wants to mount data as drive letters and I’m not sure if there is a way around this. I just want the directories encrypted and then decrypted. Cryptomator would be better but I don’t think this will run in dom0. I also do not knows if I can run anything in dom0 that has graphics interface and can’t be run in terminal.
Is there better approach? i want to encrypt whole qube and not just files on it because sometimes there could be other informaton left in qube. If I encrypt a photo where I am kissing my female friend but there is other stuff I didn’t encrypt this is trouble. best to encrypt entire qube. I don’t want to have to wonder about if I left other stuff around in qube.
I do not want to create a standalone VM with its own LUKS. This would make it hard to move stuff in and out of the VM.
it would be good to have terminal commands to make easy if someone able to do