Almost everything. Certainly everything on the C drive.
The caveat is: the contents of PhysicalDisk1 (the 2nd volume) are retained on each boot. Currently on your system it is not initialized/formatted and is likely nearly all zero data.
So, you personally can use that if you wish to format and store data to retain from boot to boot (that would be where a moved profile would have gone). However, an attacker could do the same and store data on it, perhaps in an attempt to further signature your windows account, even without formatting it.
If during the QWT setup on a Windows 10 TemplateVM i selected the “Move user profiles” option and then deployed an AppVM based off that TemplateVM - changes made within the user profile persist between reboots?
Hard to say without knowledge of your threat model.
For some workflows, I set up a Windows template and (effectively) use Windows in a disposable fashion - in that case, any data saved would need to go to external/remote storage. It can be useful in this case to write scripts (bat/cmd or ps1) to automate some tasks (depends on workflow).
For other workflows, I set up a windows AppVM, with local files, but don’t put it on a network.
Never, ever it is allowed to user to write/execute to/from Q: Always, it can execute from C: (writing to it is disposable anyway).
When I want to write and execute, it hast to be on/from external storage and in template based AppVM. I’m not hiding, and sys-firewall is default VM. I don’t execute from C: This is when I use win app which has no alternative in a Linux world and why I waited for 4.1 for four years. When jevank fixes at-the-moment-a-must-attaching via --persist (if this is about him at all), this appVM will basically look useless to the one who starts it and doesn’t know that it has to attach external storage cause everything happens there. As of now, qvm-block detach after each use…
When I don’t want to write, I use dvm, and execute only from C: I’m hiding there behind sys-whonix. But I indeed have no special need for Windows dvm. If I need dvm, it’s the Linux one. But I’d like to set proper unggogled-chromium as I have under Windows, and so far still couldn’t customize it satisfactory under Whonix. I’ll try with other distros, it’s on my to-do list. I’ll be happy to get a recommendation.
When jevank fixes choppy sound for win qubes, one app goes offline as multimedia. And that would be all from Windows.
Basically no browsing except always contacting several same specific sites for the win app stated under 1. Everything else - Linux.
Thanks @jevank@fepitre! I did get it built and installed into win10. And now working! Well, at least it can move files, haven’t done much else
I did have to do a “repair” second run of the installer to get things working, not sure why - possibly because I did not have Windows updates (going back to September) installed the first time. (I also did not have qvm-features VMNAME gui 1 set at that point but I am guessing that should only affect dom0 not the win10 qwt install.)
